PT-2024-12913 · Unknown · Id4Portais
Miguel Santareno
·
Published
2024-08-06
·
Updated
2024-08-12
·
CVE-2023-40819
CVSS v3.1
6.1
Medium
| Vector | AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N |
Name of the Vulnerable Software and Affected Versions
ID4Portais versions prior to V.2022.837.002a
Description
The issue results in a HTML Injection vulnerability due to the
message parameter being returned unsanitized in the response.Recommendations
For versions prior to V.2022.837.002a, update to version V.2022.837.002a or later to resolve the issue.
Exploit
Fix
XSS
Found an issue in the description? Have something to add? Feel free to write us 👾
Related Identifiers
Affected Products
Id4Portais