Vulnerability CVE-2023-2421


Published: 2023-04-29

Description:
A vulnerability classified as problematic has been found in Control iD RHiD 23.3.19.0. Affected is an unknown function of the file /v2/#/add/department. The manipulation of the argument Name leads to cross site scripting. It is possible to launch the attack remotely. VDB-227718 is the identifier assigned to this vulnerability. NOTE: The vendor was contacted early about this disclosure but did not respond in any way.

Type:

CWE-79

(Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting'))

 References:
https://vuldb.com/?id.227718
https://vuldb.com/?ctiid.227718
https://youtu.be/4JOLhAuoizE

Copyright 2026, cxsecurity.com

 

Back to Top