CVE-2023-6367

CVSS V2 None CVSS V3 None
Description
In WhatsUp Gold versions released before 2023.1, a stored cross-site scripting (XSS) vulnerability has been identified. It is possible for an attacker to craft a XSS payload and store that value within Roles.   If a WhatsUp Gold user interacts with the crafted payload, the attacker would be able to execute malicious JavaScript within the context of the victims browser.
Overview
  • CVE ID
  • CVE-2023-6367
  • Assigner
  • ProgressSoftware
  • Vulnerability Status
  • PUBLISHED
  • Published Version
  • 2023-12-14T16:05:50.619Z
  • Last Modified Date
  • 2023-12-14T16:05:50.619Z
History
Created Old Value New Value Data Type Notes
2024-06-25 06:35:27 Added to TrackCVE