CVE-2023-47215

Name of the Vulnerable Software and Affected Versions GROWI versions prior to v6.0.0

Description A stored cross-site scripting vulnerability exists, exploiting a behavior of the XSS Filter. If this issue is exploited, an arbitrary script may be executed on the web browser of the user who accessed the site using the product.

Recommendations For versions prior to v6.0.0, update to version v6.0.0 or later to resolve the issue. As a temporary workaround, consider restricting access to potentially vulnerable areas of the application until a patch is applied.