We use these services and cookies to improve your user experience. You may opt out if you wish, however, this may limit some features on this site.

Please see our statement on Data Privacy.

Crisp.chat (Helpdesk and Chat)

Ok

THREATINT
PUBLISHED

CVE-2023-3580

Improper Handling of Additional Special Element in squidex/squidex



Description

Improper Handling of Additional Special Element in GitHub repository squidex/squidex prior to 7.4.0.

Reserved 2023-07-10 | Published 2023-07-10 | Updated 2024-10-30 | Assigner @huntrdev


MEDIUM: 5.4CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N

Problem types

CWE-167 Improper Handling of Additional Special Element

Product status

Any version before 7.4.0
affected

References

huntr.dev/bounties/4eed53ca-06c2-43aa-aea8-c03ea5f13ce4

github.com/...ommit/2aca7621845ce18ed4065cba8e3d0fa68aaf02bf

cve.org (CVE-2023-3580)

nvd.nist.gov (CVE-2023-3580)

Download JSON

Share this page
https://cve.threatint.eu/CVE/CVE-2023-3580

Support options

Helpdesk Chat, Email, Knowledgebase