Vulnerability Details CVE-2023-2325
Stored XSS Vulnerability in M-Files Classic Web versions before 23.10 and LTS Service Release Versions before 23.2 LTS SR4 and 23.8 LTS SR1allows attacker to execute script on users browser via stored HTML document.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.001
EPSS Ranking 24.9%
CVSS Severity
CVSS v3 Score 7.3
References
Products affected by CVE-2023-2325
-
cpe:2.3:a:m-files:classic_web:-
-
cpe:2.3:a:m-files:classic_web:23.2
-
cpe:2.3:a:m-files:classic_web:23.6.12695.3
-
cpe:2.3:a:m-files:classic_web:23.8