Badaso Security Vulnerabilities and Issues — Badaso CVE List

Lucene search

UatechBadaso

5 matches found

CVE•added 2023/08/25 1:15 a.m.•117 views

CVE-2023-38973

A stored cross-site scripting (XSS) vulnerability in the Add Tag function of Badaso v2.9.7 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Title parameter.

5.4CVSS5.2AI score0.00084EPSS

CVE•added 2023/08/30 10:15 p.m.•115 views

CVE-2023-38970

Cross Site Scripting vulnerabiltiy in Badaso v.0.0.1 thru v.2.9.7 allows a remote attacker to execute arbitrary code via a crafted payload to the Name of member parameter in the add new member function.

5.4CVSS5.7AI score0.00303EPSS

CVE•added 2023/08/29 10:15 p.m.•105 views

CVE-2023-38971

Cross Site Scripting vulnerabiltiy in Badaso v.0.0.1 thru v.2.9.7 allows a remote attacker to execute arbitrary code via a crafted payload to the rack number parameter in the add new rack function.

5.4CVSS5.7AI score0.00331EPSS

CVE•added 2023/08/25 1:15 a.m.•100 views

CVE-2023-38974

A stored cross-site scripting (XSS) vulnerability in the Edit Category function of Badaso v2.9.7 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Title parameter.

5.4CVSS5.2AI score0.00084EPSS

CVE•added 2023/08/28 9:15 p.m.•40 views

CVE-2023-38969

Cross Site Scripting vulnerabiltiy in Badaso v.2.9.7 allows a remote attacker to execute arbitrary code via a crafted payload to the title parameter in the new book and edit book function.

5.4CVSS5.7AI score0.00331EPSS