CVE-2023-3833

Summary

CVE-2023-3833 is a newly discovered vulnerability affecting Bug Finder Montage 1.0. The issue lies within the Ticket Handler component's /user/ticket/create file, where a cross-site scripting (XSS) vulnerability was identified. By manipulating the message argument, an attacker can inject malicious code into web pages viewed by other users. This attack can be executed remotely. Although the vendor was notified about this disclosure, they have yet to respond.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.