Vulnerabilities > CVE-2023-3790 - Unspecified vulnerability in Uxblondon Boom CMS 8.0.7

CVSS 5.4 - MEDIUM

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

LOW

Confidentiality impact

LOW

Integrity impact

LOW

Availability impact

NONE

network

low complexity

uxblondon

NVD

Published: 2023-07-20

Updated: 2024-11-21

Summary

A vulnerability has been found in Boom CMS 8.0.7 and classified as problematic. Affected by this vulnerability is the function add of the component assets-manager. The manipulation of the argument title/description leads to cross site scripting. The attack can be launched remotely. The exploit has been disclosed to the public and may be used. The identifier VDB-235057 was assigned to this vulnerability.

Vulnerable Configurations

Part	Description	Count
Application	Uxblondon Uxblondon Boom CMS 8.0.7	1

References

https://seclists.org/fulldisclosure/2023/Jul/33
https://seclists.org/fulldisclosure/2023/Jul/33
https://vuldb.com/?ctiid.235057
https://vuldb.com/?ctiid.235057
https://vuldb.com/?id.235057
https://vuldb.com/?id.235057
https://www.vulnerability-lab.com/get_content.php?id=2274
https://www.vulnerability-lab.com/get_content.php?id=2274