Vulnerability Description
A vulnerability has been found in Boom CMS 8.0.7 and classified as problematic. Affected by this vulnerability is the function add of the component assets-manager. The manipulation of the argument title/description leads to cross site scripting. The attack can be launched remotely. The exploit has been disclosed to the public and may be used. The identifier VDB-235057 was assigned to this vulnerability.
CVSS Score
LOW
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Uxblondon | Boom Cms | 8.0.7 |
Related Weaknesses (CWE)
References
- https://seclists.org/fulldisclosure/2023/Jul/33ExploitMailing ListThird Party Advisory
- https://vuldb.com/?ctiid.235057Permissions RequiredThird Party Advisory
- https://vuldb.com/?id.235057Third Party Advisory
- https://www.vulnerability-lab.com/get_content.php?id=2274ExploitThird Party Advisory
- https://seclists.org/fulldisclosure/2023/Jul/33ExploitMailing ListThird Party Advisory
- https://vuldb.com/?ctiid.235057Permissions RequiredThird Party Advisory
- https://vuldb.com/?id.235057Third Party Advisory
- https://www.vulnerability-lab.com/get_content.php?id=2274ExploitThird Party Advisory
FAQ
What is CVE-2023-3790?
CVE-2023-3790 is a vulnerability with a CVSS score of 3.5 (LOW). A vulnerability has been found in Boom CMS 8.0.7 and classified as problematic. Affected by this vulnerability is the function add of the component assets-manager. The manipulation of the argument tit...
How severe is CVE-2023-3790?
CVE-2023-3790 has been rated LOW with a CVSS base score of 3.5/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2023-3790?
Check the references section above for vendor advisories and patch information. Affected products include: Uxblondon Boom Cms.