Page 2 of 11 results (0.016 seconds)
CVSS: 7.1EPSS: 0%CPEs: 2EXPL: 0
CVSS: 7.1EPSS: 0%CPEs: 2EXPL: 0CVE-2023-30639
https://notcve.org/view.php?id=CVE-2023-30639
01 May 2023 — Archer Platform 6.8 before 6.12 P6 HF1 (6.12.0.6.1) contains a stored XSS vulnerability. A remote authenticated malicious Archer user could potentially exploit this vulnerability to store malicious HTML or JavaScript code in a trusted application data store. 6.11.P4 (6.11.0.4) is also a fixed release. • https://www.archerirm.community/t5/security-advisories/archer-update-for-stored-cross-site-scripting/ta-p/697581 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •