Lucene search

PRIOn knowledge basePRION:CVE-2023-39598

HistorySep 05, 2023 - 6:15 p.m.

Cross site scripting

2023-09-0518:15:00

PRIOn knowledge base

www.prio-n.com

icewarp corporation

webclient

vulnerability

remote attacker

arbitrary code

crafted payload

mid parameter

nvd

6.3 Medium

AI Score

Confidence

High

0.077 Low

EPSS

Percentile

94.2%

JSON

Cross Site Scripting vulnerability in IceWarp Corporation WebClient v.10.2.1 allows a remote attacker to execute arbitrary code via a crafted payload to the mid parameter.

CPENameOperatorVersion
webclienteq10.2.1

CPE	Name	Operator	Version
	webclient	eq	10.2.1

References

medium.com/@muthumohanprasath.r/reflected-cross-site-scripting-on-icewarp-webclient-product-cve-2023-39598-9598b92da49c