CVE-2023-1278
CVSS V2 None
CVSS V3 None
Description
A vulnerability, which was classified as problematic, has been found in IBOS up to 4.5.5. Affected by this issue is some unknown functionality of the file mobil/index.php. The manipulation of the argument accesstoken leads to cross site scripting. The attack may be launched remotely. The identifier of this vulnerability is VDB-222608.
Overview
- CVE ID
- CVE-2023-1278
- Assigner
- cna@vuldb.com
- Vulnerability Status
- Analyzed
- Published Version
- 2023-03-08T19:15:10
- Last Modified Date
- 2023-03-14T17:22:27
Weakness Enumerations
CPE Configuration (Product)
CPE | Vulnerable | Operator | Version Start | Version End |
---|---|---|---|---|
cpe:2.3:a:ibos:ibos:*:*:*:*:*:*:*:* | 1 | OR | 4.5.5 |
References
Reference URL | Reference Tags |
---|---|
https://gitee.com/ibos/IBOS/issues/I6G5IJ | Exploit Issue Tracking Vendor Advisory |
https://vuldb.com/?ctiid.222608 | Third Party Advisory |
https://vuldb.com/?id.222608 | Third Party Advisory |
Sources
Source Name | Source URL |
---|---|
NIST | https://nvd.nist.gov/vuln/detail/CVE-2023-1278 |
MITRE | https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1278 |
History
Created | Old Value | New Value | Data Type | Notes |
---|---|---|---|---|
2023-04-17 06:08:05 | Added to TrackCVE | |||
2023-04-17 06:08:07 | Weakness Enumeration | new | ||
2023-04-17 06:42:09 | CVSS V3 information | new | ||
2023-04-17 06:42:09 | CVSS V2 information | new |