CVE-2023-43879

Name of the Vulnerable Software and Affected Versions Rite CMS version 3.0

Description The issue allows attackers to execute arbitrary code via a crafted payload into the Global Content Blocks in the Administration Menu. This is a Cross-Site scripting (XSS) issue.

Recommendations For Rite CMS version 3.0, consider disabling access to the Global Content Blocks in the Administration Menu until a patch is available. Restrict the use of the Administration Menu to minimize the risk of exploitation. Avoid using crafted payloads in the Global Content Blocks until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.