Lucene search
@huntrdevCVE-2023-0995HistoryFeb 24, 2023 - 3:15 a.m.
CVE-2023-0995
2023-02-2403:15:11
CWE-79
@huntrdev
web.nvd.nist.gov
20
cve-2023-0995
cross-site scripting
xss
github repository
unilogies
bumsys
CVSS3
5.4
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
REQUIRED
Scope
CHANGED
Confidentiality Impact
LOW
Integrity Impact
LOW
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N
EPSS
0.001
Percentile
25.6%
Cross-site Scripting (XSS) - Stored in GitHub repository unilogies/bumsys prior to v2.0.1.
Affected configurations
Node
business_management_system_projectbusiness_management_systemRange<2.0.1
| Vendor | Product | Version | CPE |
|---|---|---|---|
| business_management_system_project | business_management_system | * | cpe:2.3:a:business_management_system_project:business_management_system:*:*:*:*:*:*:*:* |
CNA Affected
[
{
"vendor": "unilogies",
"product": "unilogies/bumsys",
"versions": [
{
"version": "unspecified",
"lessThan": "v2.0.1",
"status": "affected",
"versionType": "custom"
}
]
}
]Related
osv
osv
CVE-2023-0995
2023-02-24 03:15:11
cvelist
cvelist
CVE-2023-0995 Cross-site Scripting (XSS) - Stored in unilogies/bumsys
2023-02-24 00:00:00
prion
prion
Cross site scripting
2023-02-24 03:15:00
nvd
nvd
CVE-2023-0995
2023-02-24 03:15:11
huntr
huntr
Stored XSS in Customer Support
2023-02-22 06:51:55
CVSS3
5.4
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
REQUIRED
Scope
CHANGED
Confidentiality Impact
LOW
Integrity Impact
LOW
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N
EPSS
0.001
Percentile
25.6%
Related for CVE-2023-0995