A reflected cross-site scripting (XSS) vulnerability in OpenKnowledgeMaps Head Start versions 4, 5, 6, 7 as well as Visual Project Explorer 1.0, allows remote attackers to execute arbitrary JavaScript in the web browser of a user, by including a malicious payload into the 'service' parameter in 'headstart_snapshot.php'.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: mitre
Published: 2023-09-20T00:00:00
Updated: 2024-08-02T18:38:51.105Z
Reserved: 2023-08-17T00:00:00
Link: CVE-2023-40618
Vulnrichment
No data.
NVD
Status : Analyzed
Published: 2023-09-20T18:15:12.383
Modified: 2023-09-26T14:09:16.680
Link: CVE-2023-40618
Redhat
No data.