CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2023-28875

A Stored XSS issue in shared files download terms in Filerun Update 20220202 allows attackers to inject JavaScript code that is executed when a user follows the crafted share link.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.001

EPSS Ranking 22.4%

CVSS Severity

CVSS v3 Score 5.4

References

https://filerun.com/changelog
https://herolab.usd.de/security-advisories/usd-2022-0009/
https://filerun.com/changelog
https://herolab.usd.de/security-advisories/usd-2022-0009/

Products affected by CVE-2023-28875

Afian » Filerun » Version: 2022.02.02

cpe:2.3:a:afian:filerun:2022.02.02

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2023-28875

Products

Pricing

Contact Us