CVE-2023-43877

CVSS 3.1 Score 4.8 of 10 (medium)

Details

Published Oct 4, 2023

Updated: Oct 20, 2023

CWE ID 79

Summary

CVE-2023-43877 refers to multiple Cross-Site Scripting (XSS) vulnerabilities present in Rite CMS 3.0. These weaknesses enable attackers to inject and execute malicious code in the Home Page fields of the Administration menu. Successful exploitation could result in unauthorized access, data theft, and potentially, complete site takeover. Users running this version of Rite CMS are advised to apply the necessary patches or updates as soon as possible to mitigate the risk.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/syX4oG
https://www.cve.org/CVERecord?id=CVE-2023-43877
https://nvd.nist.gov/vuln/detail/CVE-2023-43877

Back to Vulnerability Database

CVE-2023-43877

CVSS 3.1 Score 4.8 of 10 (medium)

Details

Summary

Advisories, Assessments, and Mitigations