CVE-2023-3505
CVE-2023-3505 affects Onest CRM 1.0. The vulnerability is a cross-site scripting flaw in the /admin/project/update/2 endpoint, triggered by manipulating the name parameter with input like . It is exploitable remotely and could lead to client-side script execution. The initial sources do not provi...