CVE-2023-23735

Name of the Vulnerable Software and Affected Versions Brainstorm Force Spectra versions prior to 2.3.0

Description The issue is related to an Improper Neutralization of Script-Related HTML Tags in a Web Page, also known as Basic XSS, which allows Code Injection. This means that an attacker could potentially inject malicious code into a web page, leading to various security issues.

Recommendations For versions prior to 2.3.0, update to version 2.3.0 or later to resolve the issue. As a temporary workaround, consider disabling any functionality that allows user-inputted HTML tags to be executed, until a patch is available. Restrict access to sensitive areas of the web application to minimize the risk of exploitation.