Vulnerability in Easy Address Book Web Server 1.6 version, affecting the parameters (firstname, homephone, lastname, middlename, workaddress, workcity, workcountry, workphone, workstate and workzip) of the /addrbook.ghp file, allowing an attacker to inject a JavaScript payload specially designed to run when the application is loaded
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: INCIBE
Published: 2023-10-04T12:19:44.181Z
Updated: 2024-09-05T18:10:37.307Z
Reserved: 2023-08-23T09:39:25.735Z
Link: CVE-2023-4492
Vulnrichment
Updated: 2024-08-02T07:31:06.057Z
NVD
Status : Modified
Published: 2023-10-04T13:15:25.910
Modified: 2024-11-21T08:35:16.820
Link: CVE-2023-4492
Redhat
No data.