Lucene search
MitreVULNRICHMENT:CVE-2023-37636HistoryOct 23, 2023 - 12:00 a.m.
CVE-2023-37636
2023-10-2300:00:00
mitre
github.com
1
stored xss
uvdesk community skeleton
arbitrary script execution
message field
ticket creation
AI Score
5.6
Confidence
High
EPSS
0.001
Percentile
20.8%
SSVC
Exploitation
poc
Automatable
no
Technical Impact
partial
A stored cross-site scripting (XSS) vulnerability in UVDesk Community Skeleton v1.1.1 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Message field when creating a ticket.
Related
cvelist
cvelist
CVE-2023-37636
2023-10-23 00:00:00
cve
cve
CVE-2023-37636
2023-10-23 21:15:08
prion
prion
Cross site scripting
2023-10-23 21:15:00
nvd
nvd
CVE-2023-37636
2023-10-23 21:15:08
AI Score
5.6
Confidence
High
EPSS
0.001
Percentile
20.8%
SSVC
Exploitation
poc
Automatable
no
Technical Impact
partial
Related for VULNRICHMENT:CVE-2023-37636