A cross-site scripting (XSS) vulnerability in Time to SLA plugin v10.13.5 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the durationFormat parameter.
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: mitre

Published: 2023-09-14T00:00:00

Updated: 2024-08-02T19:01:35.214Z

Reserved: 2023-08-30T00:00:00

Link: CVE-2023-41588

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2023-09-14T20:15:10.840

Modified: 2024-11-21T08:21:19.417

Link: CVE-2023-41588

cve-icon Redhat

No data.