CVE-2023-37636
23.10.2023, 21:15
A stored cross-site scripting (XSS) vulnerability in UVDesk Community Skeleton v1.1.1 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Message field when creating a ticket.
Vendor | Product | Version |
---|---|---|
webkul | uvdesk | 1.1.1 |
𝑥
= Vulnerable software versions