CVE-2023-45998: XSS
First published: Mon Oct 23 2023(Updated: )
kodbox 1.44 is vulnerable to Cross Site Scripting (XSS). Customizing global HTML results in storing XSS.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Kodcloud | =1.44 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Frequently Asked Questions
What is the severity of CVE-2023-45998?
The severity of CVE-2023-45998 is medium with a CVSS score of 5.4.
How does kodbox 1.44 become vulnerable to Cross Site Scripting (XSS)?
Customizing global HTML in kodbox 1.44 results in storing XSS, making it vulnerable to Cross Site Scripting (XSS).
What software versions are affected by CVE-2023-45998?
kodbox version 1.44 is affected by CVE-2023-45998.
Is there a fix for CVE-2023-45998?
At the moment, no fix is available for CVE-2023-45998. It is recommended to stay updated with the latest security patches and follow best security practices to minimize the risk.
What is the Common Weakness Enumeration (CWE) ID associated with CVE-2023-45998?
The CWE ID associated with CVE-2023-45998 is CWE-79, which refers to Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting').
- agent/type
- agent/first-publish-date
- collector/mitre-cve
- source/MITRE
- agent/severity
- agent/references
- agent/author
- agent/description
- agent/weakness
- agent/last-modified-date
- agent/softwarecombine
- agent/event
- agent/source
- agent/tags
- collector/nvd-api
- source/NVD
- agent/software-canonical-lookup
- agent/software-canonical-lookup-request
- vendor/kodcloud
- canonical/kodcloud
- version/kodcloud/1.44