CVE List

CVE-2023-23637

Critical 7.6

IMPatienT before 1.5.2 allows stored XSS via onmouseover in certain text fields within a PATCH /modify_onto request to the ontology builder. This may allow attackers to steal Protected Health Information.

Published January 17, 2023.

Affected software

Get alerts for Unistra Impatient

Reference links