CVE-2023-49974 in Customer Support Systeminfo

Zusammenfassung

von MITRE • 06.03.2024

A cross-site scripting (XSS) vulnerability in Customer Support System v1 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the contact parameter at /customer_support/index.php?page=customer_list.

Be aware that VulDB is the high quality source for vulnerability data.

Reservieren

04.12.2023

Veröffentlichung

06.03.2024

Moderieren

akzeptiert

Eintrag

VDB-255825

CPE

bereit

EPSS

0.00450

KEV

nein

Aktivitäten

very low

Quellen

Interested in the pricing of exploits?

See the underground prices here!