CVE-2023-3838

CVSS 3.1 Score 9.8 of 10 (high)

Details

Published Jul 23, 2023

Updated: May 17, 2024

CWE ID 863

Summary

CVE-2023-3838 is a recently disclosed vulnerability affecting DedeBIZ 6.2.10. An unknown functionality in the file /admin/vote_edit.php has been identified as the source of the issue. This vulnerability enables an attacker to perform cross-site scripting attacks remotely. The exploit has been made public, increasing the risk of potential attacks. Vendor notification was made early but no response was received. The identifier VDB-235189 has been assigned to this vulnerability.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/sBkIer
https://www.cve.org/CVERecord?id=CVE-2023-3838
https://nvd.nist.gov/vuln/detail/CVE-2023-3838

Back to Vulnerability Database

CVE-2023-3838

CVSS 3.1 Score 9.8 of 10 (high)

Details

Summary

Advisories, Assessments, and Mitigations