CVE-2023-5861
CVSS 3.1 Score 4.8 of 10 (medium)
Details
Published Oct 31, 2023
Updated: Nov 8, 2023
CWE ID 79
Summary
CVE-2023-5861 is a Cross-Site Scripting (XSS) vulnerability that affected the microweber/microweber GitHub repository before version 2.0. Attackers could inject malicious scripts into web pages viewed by other users, potentially stealing sensitive information or taking control of user sessions. This stored XSS vulnerability posed a significant risk to users of the affected software, highlighting the importance of keeping software up-to-date with security patches.
Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.
Share
Affected Products
- Microweber