sahiloj/CVE-2023-33732

Releases0

Stars1

CVE-2023-33732 | eScan Management Console 14.0.1400.2281 | XSS in "New Policy" form via `type`, `txtPolicyType`, and `Deletefileval` parameters.

CVE History

CVE	Published	CVSS v3	CVSS v2
CVE-2023-33732 ↗	May 31, 2023Wednesday, 31 May 2023, 20:15	6.1 MEDIUM	—
Cross Site Scripting (XSS) in the New Policy form in Microworld Technologies eScan management console 14.0.1400.2281 allows a remote attacker to inject arbitrary code via the vulnerable parameters type, txtPolicyType, and Deletefileval.