Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
ubuntucveUbuntu.comUB:CVE-2023-38057
HistoryJul 24, 2023 - 12:00 a.m.

CVE-2023-38057

2023-07-2400:00:00
ubuntu.com
ubuntu.com
4
otrs
survey module
input validation
cross-site scripting
vulnerability
javascript code

0.0004 Low

EPSS

Percentile

13.3%

JSON

An improper input validation vulnerability in OTRS Survey modules allows
any attacker with a link to a valid and unanswered survey request to inject
javascript code in free text answers. This allows a cross site scripting
attack while reading the replies as authenticated agent. This issue affects
OTRS Survey module from 7.0.X before 7.0.32, from 8.0.X before 8.0.13 and
((OTRS)) Community Edition Survey module from 6.0.X through 6.0.22.

Related

cve 1
prion 1
cvelist 1
cve
cve
CVE-2023-38057
2023-07-24 09:15:09
prion
prion
Cross site scripting
2023-07-24 09:15:00
cvelist
cvelist
CVE-2023-38057 XSS stored in survey answers
2023-07-24 08:27:55

0.0004 Low

EPSS

Percentile

13.3%

JSON
Related for UB:CVE-2023-38057
cve1prion1cvelist1