Lucene search
MitreVULNRICHMENT:CVE-2023-43341HistoryOct 19, 2023 - 12:00 a.m.
CVE-2023-43341
2023-10-1900:00:00
mitre
github.com
1
cross-site scripting
evolution evo
arbitrary code execution
crafted payload
uid parameter
AI Score
6.1
Confidence
High
EPSS
0.001
Percentile
21.0%
SSVC
Exploitation
poc
Automatable
no
Technical Impact
partial
Cross-site scripting (XSS) vulnerability in evolution evo v.3.2.3 allows a local attacker to execute arbitrary code via a crafted payload injected uid parameter.
Related
cve
cve
CVE-2023-43341
2023-10-19 22:15:09
osv
osv
Evolution CMS Cross-site Scripting vulnerability
2023-10-20 00:30:24
CVE-2023-43341
2023-10-19 22:15:09
veracode
veracode
Cross Site Scripting
2023-10-25 07:45:22
github
github
Evolution CMS Cross-site Scripting vulnerability
2023-10-20 00:30:24
nvd
nvd
CVE-2023-43341
2023-10-19 22:15:09
prion
prion
Cross site scripting
2023-10-19 22:15:00
cnvd
cnvd
Evolution CMS Cross-Site Scripting Vulnerability (CNVD-2023-85602)
2023-10-23 00:00:00
cvelist
cvelist
CVE-2023-43341
2023-10-19 00:00:00
AI Score
6.1
Confidence
High
EPSS
0.001
Percentile
21.0%
SSVC
Exploitation
poc
Automatable
no
Technical Impact
partial
Related for VULNRICHMENT:CVE-2023-43341