2 matches found
CVE-2023-37221
CVE-2023-37221 affects 7Twenty BOT and describes a Cross-site Scripting (XSS) vulnerability caused by improper neutralization of input during web page generation. The issue is documented across multiple sources (NVD, EUVD/ENISA, CVE lists, etc.), with the root cause stated as failure to properly ...
CVE-2024-42335
CVE-2024-42335 pertains to 7Twenty with a Cross‑Site Scripting (CWE-79) flaw caused by improper neutralization of input during web page generation. The NVD entry lists a CVSS v3.1 base score of 5.4 (MEDIUM) with Network attack vector, Low privileges, User interaction required, and Confidentiality...