CVE-2023-0607

Name of the Vulnerable Software and Affected Versions projectsend/projectsend versions prior to r1606

Description The issue is related to Cross-site Scripting (XSS) - Stored, which affects the GitHub repository projectsend/projectsend. This type of attack involves injecting malicious scripts into a website, allowing an attacker to steal user data or take control of the user's session.

Recommendations For versions prior to r1606, update to version r1606 or later to resolve the issue. As a temporary workaround, consider restricting access to sensitive data and implementing additional security measures to minimize the risk of exploitation.