Recent Vulnerabilities Research Posts Trends Blog About Contact

Published: 10/10/2023 Updated: 11/10/2023

CVSS v3 Base Score: 5.4 | Impact Score: 2.7 | Exploitability Score: 2.3

VMScore: 0

Cross Site Scripting vulnerability in ZenTaoPMS v.18.6 allows a local malicious user to obtain sensitive information via a crafted script.

Vulnerable Product	Search on Vulmon	Subscribe to Product
easycorp zentao 18.6

There is a storage xss vulnerability in the zentao OA ##[CVE ID] CVE-2023-44826 ##[PRODUCT] zentao OA Open source version 186 ##[VERSION] Open source version 186 ##[PROBLEM TYPE] Cross Site Scripting (XSS) ##[DESCRIPTION] There is a stored XSS vulnerability in the background of zentao OA, which can steal user cookies or perform watering hole attacks Location of vulnerability�

CWE-79 https://github.com/jacyyang52/chandaoxss/https://nvd.nist.gov https://github.com/jacyyang52/chandaoxss

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2023-44826

Vulnerability Summary

Github Repositories

References

Vulmon Search

About

Products

Connect