CVE-2023-43191 Vulnerability Details

  /     /     /  

CVE-2023-43191 Metadata Quick Info

CVE Published: 27/09/2023 | CVE Updated: 24/09/2024 | CVE Year: 2023
Source: mitre | Vendor: n/a | Product: n/a
Status : PUBLISHED

---

CVE-2023-43191 Description

SpringbootCMS 1.0 foreground message can be embedded malicious code saved in the database. When users browse the comments, these malicious codes embedded in the HTML will be executed, and the user\'s browser will be controlled by the attacker, so as to achieve the special purpose of the attacker, such as cookie theft

Metrics

CVSS Version: 3.1 | Base Score: n/a
Vector: n/a

l➤ Exploitability Metrics:
    Attack Vector (AV)*
    Attack Complexity (AC)*
    Privileges Required (PR)*
    User Interaction (UI)*
    Scope (S)*

l➤ Impact Metrics:
    Confidentiality Impact (C)*
    Integrity Impact (I)*
    Availability Impact (A)*

Weakness Enumeration (CWE)

CWE-ID:
CWE Name: n/a
Source: n/a

Common Attack Pattern Enumeration and Classification (CAPEC)

CAPEC-ID:
CAPEC Description:


Source: NVD (National Vulnerability Database).