CVE-2023-3827

CVSS 3.1 Score 7.5 of 10 (high)

Details

Published Jul 22, 2023

Updated: May 17, 2024

CWE ID 319

Summary

CVE-2023-3827: A cross-site scripting (XSS) vulnerability was identified in the Bug Finder Listplace Directory Listing Platform 3.0. This issue affects an unspecified functionality of the /listplace/user/ticket/create file in the HTTP POST Request Handler component. Manipulation of the 'message' argument can lead to XSS attacks, which may be executed remotely. The VDB-235148 identifier was assigned to this vulnerability, and efforts to alert the vendor were unsuccessful.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

IBM Corporation

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/r_Bjza
https://www.cve.org/CVERecord?id=CVE-2023-3827
https://nvd.nist.gov/vuln/detail/CVE-2023-3827

Back to Vulnerability Database

CVE-2023-3827

CVSS 3.1 Score 7.5 of 10 (high)

Details

Summary

Affected Vendors

Advisories, Assessments, and Mitigations