Vulnerabilities > Isarnet > Isarflow

DATE CVE VULNERABILITY TITLE RISK
2023-09-05 CVE-2023-34637 Cross-site Scripting vulnerability in Isarnet Isarflow
A stored cross-site scripting (XSS) vulnerability in IsarNet AG IsarFlow v5.23 allows authenticated attackers to execute arbitrary web scripts or HTML via injecting a crafted payload into the dashboard title parameter in the IsarFlow Portal.
network
low complexity
isarnet CWE-79
5.4