CVE-2023-4492
Easy Address Book Web Server XSS vulnerability
Vulnerability in Easy Address Book Web Server 1.6 version, affecting the parameters (firstname, homephone, lastname, middlename, workaddress, workcity, workcountry, workphone, workstate and workzip) of the /addrbook.ghp file, allowing an attacker to inject a JavaScript payload specially designed to run when the application is loaded
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
Affected products
EFS Software · Easy Address Book Web ServerWant to know if your infrastructure is exposed to this?
Talk to TrueHacking →