Количество 3
Количество 3
CVE-2023-1716
Cross-site scripting (XSS) vulnerability in Invoice Edit Page in Bitrix24 22.0.300 allows attackers to execute arbitrary JavaScript code in the victim's browser, and possibly execute arbitrary PHP code on the server if the victim has administrator privilege.
GHSA-cf67-p397-fq9j
Cross-site scripting (XSS) vulnerability in Invoice Edit Page in Bitrix24 22.0.300 allows attackers to execute arbitrary JavaScript code in the victim's browser, and possibly execute arbitrary PHP code on the server if the victim has administrator privilege.
BDU:2023-07462
Уязвимость страницы редактирования (Invoice Edit Page) сервиса для управления бизнесом Битрикс24, позволяющая нарушителю провести атаку межсайтового скриптинга (XSS)
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | CVE-2023-1716 Cross-site scripting (XSS) vulnerability in Invoice Edit Page in Bitrix24 22.0.300 allows attackers to execute arbitrary JavaScript code in the victim's browser, and possibly execute arbitrary PHP code on the server if the victim has administrator privilege. | CVSS3: 9 | 1% Низкий | больше 2 лет назад |
| GHSA-cf67-p397-fq9j Cross-site scripting (XSS) vulnerability in Invoice Edit Page in Bitrix24 22.0.300 allows attackers to execute arbitrary JavaScript code in the victim's browser, and possibly execute arbitrary PHP code on the server if the victim has administrator privilege. | CVSS3: 9 | 1% Низкий | больше 2 лет назад |
 | BDU:2023-07462 Уязвимость страницы редактирования (Invoice Edit Page) сервиса для управления бизнесом Битрикс24, позволяющая нарушителю провести атаку межсайтового скриптинга (XSS) | CVSS3: 9 | 1% Низкий | больше 2 лет назад |
Уязвимостей на страницу