Vulnerability Details CVE-2023-41343
Rogic No-Code Database Builder's file uploading function has insufficient filtering for special characters. A remote attacker with regular user privilege can inject JavaScript to perform XSS (Stored Cross-Site Scripting) attack.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.001
EPSS Ranking 16.3%
CVSS Severity
CVSS v3 Score 5.4
References
Products affected by CVE-2023-41343
-
cpe:2.3:a:ragic:enterprise_cloud_database:-