CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2023-31298

Cross Site Scripting (XSS) vulnerability in Sesami Cash Point & Transport Optimizer (CPTO) version 6.3.8.6 (#718), allows remote attackers to execute arbitrary code and obtain sensitive information via the User ID field when creating a new system user.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.002

EPSS Ranking 40.8%

CVSS Severity

CVSS v3 Score 4.8

References

https://herolab.usd.de/en/security-advisories/usd-2022-0060/
https://herolab.usd.de/en/security-advisories/usd-2022-0060/

Products affected by CVE-2023-31298

Sesami » Cash Point & Transport Optimizer » Version: 6.3.8.6.718

cpe:2.3:a:sesami:cash_point_&_transport_optimizer:6.3.8.6.718

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2023-31298

Products

Pricing

Contact Us