CVE-2023-34537

Опубликовано: 13 июн. 2023

Источник: debian

Описание

A Reflected XSS was discovered in HotelDruid version 3.0.5, an attacker can issue malicious code/command on affected webpage's parameter to trick user on browser and/or exfiltrate data.

Пакеты

Пакет	Статус	Версия исправления	Релиз	Тип
hoteldruid	fixed	3.0.6-1		package
hoteldruid	no-dsa		bookworm	package
hoteldruid	no-dsa		bullseye	package
hoteldruid	no-dsa		buster	package

Примечания

https://github.com/leekenghwa/CVE-2023-34537---XSS-reflected--found-in-HotelDruid-3.0.5

Связанные уязвимости

CVE-2023-34537

CVSS3: 5.4

ubuntu

больше 2 лет назад

A Reflected XSS was discovered in HotelDruid version 3.0.5, an attacker can issue malicious code/command on affected webpage's parameter to trick user on browser and/or exfiltrate data.

CVE-2023-34537

CVSS3: 5.4

nvd

больше 2 лет назад

A Reflected XSS was discovered in HotelDruid version 3.0.5, an attacker can issue malicious code/command on affected webpage's parameter to trick user on browser and/or exfiltrate data.

GHSA-hvmq-jxc9-7gcc

CVSS3: 5.4

github

больше 2 лет назад

A Reflected XSS was discovered in HotelDruid version 3.0.5, an attacker can issue malicious code/command on affected webpage's parameter to trick user on browser and/or exfiltrate data.