Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
5.4
CVSSv3

CVE-2023-34830

Published: 27/06/2023 Updated: 07/11/2023
CVSS v3 Base Score: 5.4 | Impact Score: 2.7 | Exploitability Score: 2.3
VMScore: 0

Vulnerability Summary

i-doit Open v24 exists to contain a reflected cross-site scripting (XSS) vulnerability via the timeout parameter on the login page.

Vulnerable Product Search on Vulmon Subscribe to Product

i-doit i-doit

Github Repositories

https://github.com/leekenghwa/CVE-2023-34830---Reflected-XSS-found-in-I-doit-Open-v24-and-below

CVE-2023-34830 - Reflected XSS found in i-doit Open v24 and below i-doit Open v24 and below are vulnerable to Reflected XSS vulnerability These vulnerabilities could allows remote authenticated attackers to inject arbitrary web script or HTML Description of product : i-doit is a web based Open Source IT documentation and CMDB (Configuration Management Database) developed by s

References

CWE-79https://github.com/leekenghwa/CVE-2023-34830---Reflected-XSS-found-in-I-doit-Open-v24-and-belowhttps://medium.com/%40ray.999/cve-2023-34830-reflected-xss-on-i-doit-open-v24-and-below-ad58036f5407https://nvd.nist.govhttps://github.com/leekenghwa/CVE-2023-34830---Reflected-XSS-found-in-I-doit-Open-v24-and-below
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-33228CVE-2024-20361log injectionbypassCVE-2024-4985CVE-2024-35223CVE-2024-29849CVE-2024-31893IMAP
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook