Unrated severityNVD Advisory· Published Nov 3, 2023· Updated Sep 5, 2024

Ragic No-Code Database Builder - Stored XSS

CVE-2023-41343

Description

Rogic No-Code Database Builder's file uploading function has insufficient filtering for special characters. A remote attacker with regular user privilege can inject JavaScript to perform XSS (Stored Cross-Site Scripting) attack.

Affected products

Ragic/No Code Database Builderv5
Range: All version before patching

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

www.twcert.org.tw/tw/cp-132-7509-5b734-1.htmlmitre

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000