Description
A 'Cross-site Scripting' (XSS) vulnerability, characterized by improper input neutralization during web page generation, has been discovered. This vulnerability allows for Stored XSS attacks to occur. Multiple areas within the administration interface of the webserver lack adequate input validation, resulting in multiple instances of Stored XSS vulnerabilities.
Analysis
No analysis available yet.
Default status is the baseline for the product, each version can override it (e.g. patched versions marked unaffected).
| Vendor | Product | Default status | Versions | ||||||
|---|---|---|---|---|---|---|---|---|---|
| Kiloview | P1/P2 | affected |
|
Configuration 1 [-]
| AND |
|
Configuration 2 [-]
| AND |
|
No data.
No data available yet.
Remediation
No remediation available yet.
Tracking
Sign in to view the affected projects.
Advisories
| Source | ID | Title |
|---|---|---|
 EUVD |
EUVD-2023-46399 | A 'Cross-site Scripting' (XSS) vulnerability, characterized by improper input neutralization during web page generation, has been discovered. This vulnerability allows for Stored XSS attacks to occur. Multiple areas within the administration interface of the webserver lack adequate input validation, resulting in multiple instances of Stored XSS vulnerabilities. |
References
| Link | Providers |
|---|---|
| https://advisories.ncsc.nl/advisory?id=NCSC-2024-0273 |
|
History
No history.
MITRE
Status: PUBLISHED
Assigner: NCSC-NL
Published:
Updated: 2024-08-02T19:09:49.427Z
Reserved: 2023-09-05T10:14:50.216Z
Link: CVE-2023-41922
Vulnrichment
Updated: 2024-08-02T19:09:49.427Z
NVD
Status : Modified
Published: 2024-07-02T08:15:04.373
Modified: 2024-11-21T08:21:55.720
Link: CVE-2023-41922
Redhat
No data.
OpenCVE Enrichment
No data.
Weaknesses