CVE-2023-4189

CVSS v3.1

4.8

Medium

Vector

AV:N/AC:L/PR:H/UI:R/S:C/C:L/I:L/A:N

Name of the Vulnerable Software and Affected Versions instantsoft/icms2 versions prior to 2.16.1-git

Description The issue is related to Cross-site Scripting (XSS) - Reflected. This is a type of security vulnerability that occurs when an application takes user input and sends it back to the user without proper validation or sanitization, allowing an attacker to inject malicious code.

Recommendations For versions prior to 2.16.1-git, update to version 2.16.1-git or later to resolve the issue.

Exploit

Fix

XSS

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-79

Related Identifiers

CVE-2023-4189

Affected Products

Instantsoft/Icms2

CVE-2023-4189

Weakness Enumeration

Related Identifiers

Affected Products

References · 6