3 matches found
CVE-2023-51436
Cross-site scripting vulnerability exists in UNIVERSAL PASSPORT RX versions 1.0.0 to 1.0.8, which may allow a remote authenticated attacker with an administrative privilege to execute an arbitrary script on the web browser of the user who is using the product...
CVE-2023-51436
CVE-2023-51436 affects UNIVERSAL PASSPORT RX (Japan System Techniques) up to version 1.0.8. The issue is a cross-site scripting (XSS) vulnerability that can be exploited by a remote authenticated attacker with administrative privileges to execute arbitrary scripts in users’ browsers. The root cau...
JVN#43215077: Multiple vulnerabilities in UNIVERSAL PASSPORT RX
UNIVERSAL PASSPORT RX provided by Japan System Techniques Co., Ltd. contains multiple vulnerabilities listed below. Cross-site scripting CWE-79 CVSS:3.0/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N Base Score 5.4 CVE-2023-42427 Dependency on vulnerable third-party component CWE-1395 Known vulnerability in...