CVE-2023-5811

CVSS 3.1 Score 4.8 of 10 (medium)

Details

Published Oct 27, 2023
Updated: Apr 11, 2024
CWE ID 79

Summary

CVE-2023-5811 is a vulnerability found in flusity CMS that affects the function loadPostAddForm of the file core/tools/posts.php. This vulnerability allows for cross-site scripting (XSS) attacks to be launched remotely through manipulation of the argument menu_id. The exploit has been publicly disclosed and may be used by malicious actors. The affected product uses continuous delivery with rolling releases, so specific version information is not available. However, a patch with the identifier 6943991c62ed87c7a57989a0cb7077316127def8 has been identified to fix this issue. It is recommended to apply this patch to mitigate the risk posed by this vulnerability, which has a base severity rating of MEDIUM according to NVD@NIST.gov.

Explore Beyond the CVE Basics with Recorded Future's Vulnerability Intelligence

Note: This is just a basic overview providing quick insights into CVE-2023-5811 information. Gain full access to comprehensive CVE data, risk scores, prioritization, and mitigation data through Recorded Future's Vulnerability Intelligence:
  • Prioritize with Risk-Based Scoring
  • Explore the Extensive Vulnerability Database
  • Receive Early Alerts on Emerging CVEs
  • Focus on Critical Exploitable Vulnerabilities
  • Streamline Remediation with Integration Options