CVE-2023-40813: XSS
First published: Sat Nov 18 2023(Updated: )
OpenCRX version 5.2.0 is vulnerable to HTML injection via Activity Saved Search Creation.
Credit: cve@mitre.org cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Opencrx Opencrx | =5.2.0 | |
| maven/org.opencrx:opencrx-core-models | <=5.2.0 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is CVE-2023-40813?
CVE-2023-40813 is a vulnerability in OpenCRX version 5.2.0 that allows for HTML injection via Activity Saved Search Creation.
What is the severity of CVE-2023-40813?
The severity of CVE-2023-40813 is not specified in the provided information.
How does CVE-2023-40813 impact OpenCRX version 5.2.0?
CVE-2023-40813 allows attackers to perform HTML injection via Activity Saved Search Creation in OpenCRX version 5.2.0.
Is OpenCRX version 5.2.0 the only affected software?
Yes, OpenCRX version 5.2.0 is the only affected software mentioned in the provided information.
How can I fix CVE-2023-40813 in OpenCRX version 5.2.0?
To fix CVE-2023-40813 in OpenCRX version 5.2.0, it is recommended to update to a patched version of the software.
- collector/nvd-cve
- collector/nvd-api
- collector/github-advisory-latest
- alias/GHSA-5phw-6g3r-55xx
- alias/CVE-2023-40813
- collector/github-advisory
- agent/author
- agent/type
- agent/softwarecombine
- agent/first-publish-date
- collector/epss-latest
- source/FIRST
- agent/severity
- agent/weakness
- agent/references
- agent/description
- agent/epss
- agent/event
- collector/mitre-cve
- source/MITRE
- agent/last-modified-date
- agent/tags
- agent/trending
- vendor/opencrx
- canonical/opencrx opencrx
- version/opencrx opencrx/5.2.0
- package-manager/maven