CVE-2023-5842

CVSS 3.1 Score 4.8 of 10 (medium)

Details

Published Oct 30, 2023
Updated: Nov 7, 2023
CWE ID 79

Summary

CVE-2023-5842 is a newly disclosed Cross-Site Scripting (XSS) vulnerability. This issue affects the GitHub repository dolibarr/dolibarr prior to version 16.0.5. The vulnerability allows an attacker to inject malicious scripts into web pages viewed by other users, potentially leading to unauthorized access, session hijacking, or other privacy violations. The exploitation of this XSS flaw requires the user to visit a specially crafted webpage, making it a stored XSS vulnerability. System administrators and users are recommended to update their dolibarr installations to the latest version, 16.0.5 or later, to mitigate this risk.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share