CVE-2023-50072 | OpenKM 7.1.40 Note Upload cross site scripting

Posted by Angelo Barbosa | Jan 13, 2024 | CVE

A vulnerability, which was classified as problematic, was found in OpenKM 7.1.40. This affects an unknown part of the component Note Upload Handler. The manipulation leads to cross site scripting.

This vulnerability is uniquely identified as CVE-2023-50072. It is possible to initiate the attack remotely. There is no exploit available.

CVE-2023-50072 | OpenKM 7.1.40 Note Upload cross site scripting

Related Posts

CVE-2024-7448 | Magnet Forensics Axiom command injection (ZDI-24-1129)

CVE-2023-52221 | UkrSolution Barcode Scanner and Inventory Manager Plugin up to 1.5.1 on WordPress unrestricted upload

CVE-2024-0186 | HuiRan Host Reseller System up to 2.0.0 HTTP POST Request findpass password recovery

CVE-2024-25519 | RuvarOA 6.01/12.01 wf_work_print.aspx idlist sql injection