CVE-2023-43873

Name of the Vulnerable Software and Affected Versions e017 CMS version 2.3.2

Description A Cross Site Scripting (XSS) issue allows a local attacker to execute arbitrary code via a crafted script to the Name field in the Manage Menu. This enables the attacker to perform unauthorized actions.

Recommendations For e017 CMS version 2.3.2, consider disabling the Manage Menu or restricting access to it until a patch is available to prevent exploitation of the XSS vulnerability. Avoid using the Name field in the Manage Menu until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.