Vulnerability CVE-2023-45394
Published: 2023-10-20

Description:
Stored Cross-Site Scripting (XSS) vulnerability in the Company field in the "Request a Quote" Section of Small CRM v3.0 allows an attacker to store and execute malicious javascript code in the Admin panel which leads to Admin account takeover.

 References:
https://github.com/kartik753/CVE/blob/main/CVE-2023-45394
Copyright 2026, cxsecurity.com

 

Back to Top