WEBIGniter 28.7.23 contains a cross-site scripting vulnerability in the user creation process that allows unauthenticated attackers to execute malicious JavaScript code, enabling potential XSS attacks.
Metrics
Affected Vendors & Products
| Vendors | Products |
|---|---|
| Webigniter |
|
No data.
No data.
References
History
Fri, 05 Dec 2025 17:15:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| Metrics |
ssvc
|
Fri, 05 Dec 2025 11:00:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| First Time appeared |
Webigniter
Webigniter webigniter |
|
| Vendors & Products |
Webigniter
Webigniter webigniter |
Thu, 04 Dec 2025 21:00:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| Description | WEBIGniter 28.7.23 contains a cross-site scripting vulnerability in the user creation process that allows unauthenticated attackers to execute malicious JavaScript code, enabling potential XSS attacks. | |
| Title | WEBIGniter 28.7.23 Cross-Site Scripting (XSS) in User Creation Process | |
| Weaknesses | CWE-79 | |
| References |
| |
| Metrics |
cvssV4_0
|
MITRE
Status: PUBLISHED
Assigner: VulnCheck
Published: 2025-12-04T20:40:46.933Z
Updated: 2025-12-05T16:48:42.660Z
Reserved: 2025-12-04T16:15:09.256Z
Link: CVE-2023-53735
Vulnrichment
Updated: 2025-12-05T16:46:24.105Z
NVD
Status : Received
Published: 2025-12-04T21:16:07.177
Modified: 2025-12-04T21:16:07.177
Link: CVE-2023-53735
Redhat
No data.