CVE-2023-37686

CVSS 3.1 Score 4.8 of 10 (medium)

Details

Published Aug 8, 2023

Updated: Nov 14, 2023

CWE ID 79

Summary

CVE-2023-37686 is a newly identified cross-site scripting (XSS) vulnerability affecting the Add Nurse Page in the Admin portal of the Online Nurse Hiring System v1.0. An attacker could exploit this flaw by injecting malicious scripts into a victim's web browser, potentially stealing sensitive data or taking control of the user's session. This issue poses a significant security risk to users and requires immediate patching to mitigate the threat.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/sFo4M8
https://www.cve.org/CVERecord?id=CVE-2023-37686
https://nvd.nist.gov/vuln/detail/CVE-2023-37686

Back to Vulnerability Database

CVE-2023-37686

CVSS 3.1 Score 4.8 of 10 (medium)

Details

Summary

Advisories, Assessments, and Mitigations