PT-2023-24106 · Crudlab · Crudlab Jazz Popups

Thiennv

Publicado

2023-11-07

Atualizado

2023-11-16

CVE-2023-32966

CVSS v3.1

6.1

Média

Vetor

AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N

Name of the Vulnerable Software and Affected Versions CRUDLab Jazz Popups versions 1.8.7 and earlier

Description A Cross-Site Request Forgery (CSRF) issue in CRUDLab Jazz Popups can lead to Stored XSS.

Recommendations For versions 1.8.7 and earlier, update to a version that contains a fix for this issue.

Correção

CSRF

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

CVE-2023-32966

Crudlab Jazz Popups