Security Advisory

CVE-2023-4492

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2023-10-04 12:19:44

Last updated 2024-09-05 18:10:37

Assigner INCIBE

State PUBLISHED

Description

Vulnerability in Easy Address Book Web Server 1.6 version, affecting the parameters (firstname, homephone, lastname, middlename, workaddress, workcity, workcountry, workphone, workstate and workzip) of the /addrbook.ghp file, allowing an attacker to inject a JavaScript payload specially designed to run when the application is loaded

← Browse all CVEs View on cve.org ↗