AI Score
Confidence
High
SSVC
Exploitation
poc
Automatable
no
Technical Impact
partial
openCRX 5.2.0 was discovered to contain a cross-site scripting (XSS) vulnerability via the Name field after creation of a Tracker in Manage Activity.
www.esecforte.com/cve-2023-27150-cross-site-scripting-xss/
www.opencrx.org/