Medium severity6.1NVD Advisory· Published Feb 13, 2023· Updated Jun 17, 2026
CVE-2023-25241
CVE-2023-25241
Description
bgERP v22.31 was discovered to contain a reflected cross-site scripting (XSS) vulnerability via the Search parameter.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- bgERP/bgERPdescription
Patches
Vulnerability mechanics
References
2- github.com/nu11secur1ty/CVE-nu11secur1ty/tree/main/vendors/bgERP/2023/bgERP-v22.31-Cookie-Session-vulnerability%2BXSS-ReflectednvdExploitThird Party Advisory
- portswigger.net/kb/issues/00500b01_cookie-manipulation-reflected-dom-basednvdThird Party Advisory
News mentions
0No linked articles in our index yet.