VYPR
leads to cross site scripting. The attack can be initiated remotely. VDB-232954 is the identifier assigned to this vulnerability. NOTE: The vendor was contacted early about this disclosure but did not respond in any way.","additionalType":"https://schema.org/SoftwareApplication","sameAs":["https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-3506"]},"keywords":"CVE-2023-3506, Active It Zone Active eCommerce CMS, Active It Zone Active eCommerce CMS","mentions":[{"@type":"SoftwareApplication","name":"Active eCommerce CMS","applicationCategory":"SecurityApplication","publisher":{"@type":"Organization","name":"Active It Zone"}},{"@type":"SoftwareApplication","name":"Active eCommerce CMS","applicationCategory":"SecurityApplication","publisher":{"@type":"Organization","name":"Active It Zone"}}],"isAccessibleForFree":true},{"@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https://portal.vyprsec.ai/"},{"@type":"ListItem","position":2,"name":"CVEs","item":"https://portal.vyprsec.ai/cves"},{"@type":"ListItem","position":3,"name":"CVE-2023-3506","item":"https://portal.vyprsec.ai/cves/CVE-2023-3506"}]}]}
← All advisories
Unrated severityNVD Advisory· Published Jul 4, 2023· Updated Aug 2, 2024

Active It Zone Active eCommerce CMS Create Ticket Page support_ticket cross site scripting

CVE-2023-3506

Description

A vulnerability was found in Active It Zone Active eCommerce CMS 6.5.0. It has been declared as problematic. This vulnerability affects unknown code of the file /ecommerce/support_ticket of the component Create Ticket Page. The manipulation of the argument details with the input leads to cross site scripting. The attack can be initiated remotely. VDB-232954 is the identifier assigned to this vulnerability. NOTE: The vendor was contacted early about this disclosure but did not respond in any way.

Affected products

2

Patches

0

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

2

News mentions

0

No linked articles in our index yet.