CVE-2023-6128

Cross-site Scripting (XSS) - Reflected in salesagility/suitecrm

CVSS 6.8 MEDIUMEPSS 0.6%CWE-79

Cross-site Scripting (XSS) - Reflected in GitHub repository salesagility/suitecrm prior to 7.14.2, 7.12.14, 8.4.2.

CVSS:3.0/AV:N/AC:L/PR:H/UI:R/S:U/C:H/I:H/A:H

Affected products

salesagility · salesagility/suitecrm

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

https://github.com/salesagility/suitecrm/commit/54bc56c3bd9f1db75408db1c1d7d652c3f5f71e9 https://huntr.com/bounties/51406547-1961-45f2-a416-7f14fd775d2d