CVE-2023-31223

CVE-2023-31223

CVSS 8.7 HIGHEPSS 0.5%CWE-79

Dradis before 4.8.0 allows persistent XSS by authenticated author users, related to avatars.

CVSS:3.1/AC:L/AV:N/A:N/C:H/I:H/PR:L/S:C/UI:R

Affected products

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

https://cds.thalesgroup.com/en/tcs-cert/CVE-2023-31223 https://dradisframework.com/ce/security_reports.html#fixed-4.8.0 https://excellium-services.com/cert-xlm-advisory/cve-2023-31223/