Cross Site Scripting (XSS) vulnerability in xiweicheng TMS v.2.28.0 allows a remote attacker to execute arbitrary code via a crafted script to the click here function.
References
Link | Resource |
---|---|
https://github.com/xiweicheng/tms/issues/19 | Exploit Issue Tracking |
Configurations
Configuration 1 (hide)
|
History
10 Jan 2024, 16:41
Type | Values Removed | Values Added |
---|---|---|
First Time |
Teamwork Management System Project
Teamwork Management System Project teamwork Management System |
|
CVSS |
v2 : v3 : |
v2 : unknown
v3 : 6.1 |
CPE | cpe:2.3:a:teamwork_management_system_project:teamwork_management_system:2.28.0:*:*:*:*:*:*:* | |
CWE | CWE-79 | |
References | () https://github.com/xiweicheng/tms/issues/19 - Exploit, Issue Tracking |
04 Jan 2024, 08:15
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2024-01-04 08:15
Updated : 2024-02-28 20:54
NVD link : CVE-2023-50630
Mitre link : CVE-2023-50630
CVE.ORG link : CVE-2023-50630
JSON object : View
Products Affected
teamwork_management_system_project
- teamwork_management_system
CWE
CWE-79
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')