CVE-2023-50339 | WESEEK GROWI up to 6.1.10 User Management Page /admin/users cross site scripting

Inserito da Angelo Barbosa | Dic 26, 2023 | CVE

A vulnerability has been found in WESEEK GROWI up to 6.1.10 and classified as problematic. Affected by this vulnerability is an unknown functionality of the file /admin/users of the component User Management Page. The manipulation leads to cross site scripting.

This vulnerability is known as CVE-2023-50339. The attack can be launched remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2023-50339 | WESEEK GROWI up to 6.1.10 User Management Page /admin/users cross site scripting

Post correlati

CVE-2024-38468 | Shenzhen Guoxin Synthesis Image System up to 8.2.x API resetPassword password recovery

CVE-2024-37885 | Nextcloud Desktop Client up to 3.11.x on macOS DYLD_INSERT_LIBRARIES code injection (GHSA-4mf7-v63m-99p7)

CVE-2024-32134 | Nasirahmed Forms to Zapier, Integromat, IFTTT, Workato, Automate.io, elastic.io, Built.io, APIANT, Webhook Plugin sql injection

CVE-2023-6325 | RomethemeForm for Elementor Plugin up to 1.1.5 on WordPress export_entries/rtformnewform/rtformupdate authorization