Betul Denizler

#20679de 53,635

12.2CVSS total

Vulnerabilidades · 2

Média

2

Asos Information Technologies · Sobiad · CVE-2023-0577

**Name of the Vulnerable Software and Affected Versions** ASOS Information Technologies SOBIAD versions prior to 23.02.01 **Description** The issue is related to Improper Neutralization of Input During Web Page Generation, also known as Cross-site Scripting (XSS). This allows for Cross-Site Scripting (XSS) attacks. **Recommendations** For versions prior to 23.02.01, update to version 23.02.01 or later to resolve the issue.

Asos Information Technologies · Asos Information Technologies Book Cites · CVE-2023-0578

**Name of the Vulnerable Software and Affected Versions** ASOS Information Technologies Book Cites versions prior to 23.01.05 **Description** The issue is related to improper neutralization of input during web page generation, which allows Cross-Site Scripting (XSS). This means an attacker could potentially inject malicious scripts into the website, affecting users' sessions. **Recommendations** For versions prior to 23.01.05, update to version 23.01.05 or later to resolve the issue. At the moment, there is no information about additional mitigation measures for this specific issue.