Skip to main content

CVE-2023-33731

Description

Reflected Cross Site Scripting (XSS) in the view dashboard detail feature in Microworld Technologies eScan management console 14.0.1400.2281 allows remote attacker to inject arbitrary code via the URL directly.

NVD
Severity: MEDIUM
CVE ID: CVE-2023-33731
CVSS Score: 6.1
CVSS Metrics: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N

Refrence: NVD MITRE

Proof Of Concept

sahiloj

Reflected Cross Site Scripting (XSS) in eScan Management Console

Refrence: GitHub

Description
Proof Of Concept