First published: Fri Jul 07 2023(Updated: )
A vulnerability has been found in ThinuTech ThinuCMS 1.5 and classified as problematic. Affected by this vulnerability is an unknown functionality of the file /author_posts.php. The manipulation of the argument author with the input g6g12<script>alert(1)</script>o8sdm leads to cross site scripting. The attack can be launched remotely. The identifier VDB-233293 was assigned to this vulnerability.
Credit: cna@vuldb.com cna@vuldb.com
Affected Software | Affected Version | How to fix |
---|---|---|
Thinutech Thinu-cms | =1.5 | |
Apple Webkit | ||
Microsoft Power Platform | ||
Microsoft Azure Logic Apps | ||
Microsoft Windows | ||
Adobe Prelude | ||
Adobe Illustrator | ||
Adobe InDesign | ||
Adobe Dimension | ||
Adobe Experience Manager | ||
Adobe Substance3D Stager | ||
Adobe Substance3D Sampler | ||
Adobe Substance3D After Effects | ||
Adobe Substance3D Designer | ||
Google Android | ||
SAP Business Technology Platform (SAP BTP) | ||
Atlassian Bamboo | ||
Atlassian Bitbucket | ||
Atlassian JIRA | ||
Atlassian Confluence Data Center | ||
Atlassian Confluence Server | ||
Cisco Apache Struts | ||
VMware Workspace ONE Launcher | ||
FortiGuard FortiOS | ||
FortiGuard FortiPAM HTTPSd daemon | ||
=1.5 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
(Found alongside the following vulnerabilities)
The vulnerability ID is CVE-2023-3541.
The title of the vulnerability is ThinuTech ThinuCMS author_posts.php cross site scripting.
The severity of CVE-2023-3541 is medium with a severity value of 6.1.
The affected software is ThinuTech ThinuCMS 1.5.
To fix CVE-2023-3541, apply the latest update or patch provided by ThinuTech.