Security Advisory

CVE-2023-45394

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2023-10-20 00:00:00

Last updated 2024-09-12 14:47:39

Assigner mitre

State PUBLISHED

Description

Stored Cross-Site Scripting (XSS) vulnerability in the Company field in the "Request a Quote" Section of Small CRM v3.0 allows an attacker to store and execute malicious javascript code in the Admin panel which leads to Admin account takeover.

← Browse all CVEs View on cve.org ↗