CVE-2023-5555: Cross-site Scripting (XSS) - Generic in frappe/lms
First published: Thu Oct 12 2023(Updated: )
Cross-site Scripting (XSS) - Generic in GitHub repository frappe/lms prior to 5614a6203fb7d438be8e2b1e3030e4528d170ec4.
Credit: security@huntr.dev security@huntr.dev
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Frappe Frappe Lms | =1.0.0 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the vulnerability ID of this cross-site scripting (XSS) vulnerability?
The vulnerability ID is CVE-2023-5555.
Which GitHub repository is affected by this XSS vulnerability?
The XSS vulnerability affects the GitHub repository frappe/lms.
What is the severity level of this XSS vulnerability?
The severity level of this XSS vulnerability is high (6.1).
How can I fix this XSS vulnerability in the frappe/lms GitHub repository?
To fix this XSS vulnerability, update the frappe/lms repository to the commit 5614a6203fb7d438be8e2b1e3030e4528d170ec4 or later.
Is there any additional information or references available for this XSS vulnerability?
Yes, you can find more information and references for this XSS vulnerability at the following links: - GitHub commit: [https://github.com/frappe/lms/commit/5614a6203fb7d438be8e2b1e3030e4528d170ec4](https://github.com/frappe/lms/commit/5614a6203fb7d438be8e2b1e3030e4528d170ec4) - Huntr Bounty: [https://huntr.dev/bounties/f6d688ee-b049-4f85-ac3e-f4d3e29e7b9f](https://huntr.dev/bounties/f6d688ee-b049-4f85-ac3e-f4d3e29e7b9f)
- collector/nvd-api
- collector/nvd-index
- agent/references
- agent/author
- agent/type
- agent/remedy
- agent/softwarecombine
- collector/mitre-cve
- source/MITRE
- agent/last-modified-date
- agent/severity
- agent/title
- agent/weakness
- agent/tags
- agent/description
- agent/event
- agent/first-publish-date
- vendor/frappe
- canonical/frappe frappe lms
- version/frappe frappe lms/1.0.0