CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

8 matches found

NVD•added 2024/02/13 1:15 a.m.•6 views

CVE-2023-52059

A cross-site scripting XSS vulnerability in Gestsup v3.2.46 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Description text field...

5.4CVSS5.6AI score0.00198EPSS

Exploits1References2

NVD•added 2024/02/13 1:15 a.m.•12 views

CVE-2023-52060

A Cross-Site Request Forgery CSRF in Gestsup v3.2.46 allows attackers to arbitrarily edit user profile information via a crafted request...

4.3CVSS6.3AI score0.00117EPSS

Exploits1References2

Prion•added 2024/02/13 1:15 a.m.•7 views

Cross site scripting

A cross-site scripting XSS vulnerability in Gestsup v3.2.46 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Description text field...

6AI score0.00198EPSS

Exploits1References2

Prion•added 2024/02/13 1:15 a.m.•11 views

Cross site request forgery (csrf)

A Cross-Site Request Forgery CSRF in Gestsup v3.2.46 allows attackers to arbitrarily edit user profile information via a crafted request...

6.9AI score0.00117EPSS

Exploits1References2

Cvelist•added 2024/02/13 12:0 a.m.•13 views

CVE-2023-52060

A Cross-Site Request Forgery CSRF in Gestsup v3.2.46 allows attackers to arbitrarily edit user profile information via a crafted request...

6.6AI score0.00117EPSS

Exploits1References2

Vulnrichment•added 2024/02/13 12:0 a.m.•16 views

CVE-2023-52060

A Cross-Site Request Forgery CSRF in Gestsup v3.2.46 allows attackers to arbitrarily edit user profile information via a crafted request...

6.7AI score0.00117EPSS

Exploits1References2

CVE•added 2024/02/13 12:0 a.m.•67 views

CVE-2023-52060

CVE-2023-52060 is a CSRF flaw in GESTSUP v3.2.46 that allows an attacker to arbitrarily edit user profile information via a crafted request. Documents consistently identify the affected product as GESTSUP (web-based application) and the vulnerability type as CSRF, with the impact described as una...

4.3CVSS6.5AI score0.00117EPSS

Exploits1References2Affected Software1

CVE•added 2024/02/13 12:0 a.m.•68 views

CVE-2023-52059

CVE-2023-52059 affects Gestsup v3.2.46 with a cross-site scripting (XSS) vulnerability in the Description text field. The underlying issue is likely insufficient input sanitization, enabling an attacker to inject arbitrary web scripts/HTML and potentially compromise a user session or page integri...

5.4CVSS5.7AI score0.00198EPSS

Exploits1References2Affected Software1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by