CVE-2023-46925

CVSS 3.1 Score 4.8 of 10 (medium)

Details

Published Nov 2, 2023

Updated: Nov 9, 2023

CWE ID 79

Summary

CVE-2023-46925 represents a Cross Site Scripting (XSS) vulnerability affecting Reportico 7.1.21. An attacker can inject malicious scripts into a webpage viewed by other users, potentially stealing sensitive information or gaining unauthorized access. Users are advised to update Reportico to a secure version immediately to mitigate this risk. Failure to do so may lead to data breaches or unintended system behavior.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/tMy_yL
https://www.cve.org/CVERecord?id=CVE-2023-46925
https://nvd.nist.gov/vuln/detail/CVE-2023-46925

Back to Vulnerability Database

CVE-2023-46925

CVSS 3.1 Score 4.8 of 10 (medium)

Details

Summary

Advisories, Assessments, and Mitigations