CVE-2023-2853

MEDIUM

6.1

CVSS Severity Score

EPSS Score0.0190%

EPSS Percentile17.12th

Published2023年7月10日

Last Modified2026年5月22日

Vulnerability Description

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Softmed SelfPatron allows Reflected XSS. This issue affects SelfPatron : before 2.0.

Affected Platforms (CPE)

📦

Softmedyazilim

Selfpatron

< 2.0

References & Advisories

🔗 https://siberguvenlik.gov.tr/guvenlik-bildirimleri/detay/tr-23-0388

🔗 https://www.usom.gov.tr/bildirim/tr-23-0388

相关漏洞威胁

CVE-2023-28529.8

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Softmed SelfPatron allows SQ...

CVE-2023-09399.8

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in NTN Information Technologies...

CVE-2023-11149.8

Missing Authorization vulnerability in Eskom e-Belediye allows Information Elicitation. This issue affects e-Belediye: from 1.0.0...

CVE-2023-08399.8

Improper Protection for Outbound Error Messages and Alert Signals vulnerability in ProMIS Process Co. InSCADA allows Account Footp...