Medium severity6.1NVD Advisory· Published Apr 28, 2023· Updated Jun 17, 2026
CVE-2023-30454
CVE-2023-30454
Description
An issue was discovered in ebankIT before 7. Document Object Model based XSS exists within the /Security/Transactions/Transactions.aspx endpoint. Users can supply their own JavaScript within the ctl100$ctl00MainContent$TransactionMainContent$accControl$hdnAccountsArray POST parameter that will be passed to an eval() function and executed upon pressing the continue button.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- ebankIT/ebankITdescription
Patches
Vulnerability mechanics
References
2- packetstormsecurity.com/files/172063/ebankIT-6-Cross-Site-Scripting.htmlnvdThird Party AdvisoryVDB Entry
- blog.ebankit.com/blog-pressnvdProduct
News mentions
0No linked articles in our index yet.