Vulnerability Database
Blog
FAQ
Docs
CVE-2023-1240
See a problem?
Please try reporting it
to the source
first.
Source
https://nvd.nist.gov/vuln/detail/CVE-2023-1240
Import Source
https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2023-1240.json
JSON Data
https://api.osv.dev/v1/vulns/CVE-2023-1240
Aliases
GHSA-55vm-3vq3-4jpc
GO-2023-1613
Published
2023-03-07T08:15:09Z
Modified
2024-08-20T20:58:32.432508Z
Severity
5.4 (Medium)
CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N
CVSS Calculator
Summary
[none]
Details
Cross-site Scripting (XSS) - Stored in GitHub repository answerdev/answer prior to 1.0.6.
References
https://huntr.dev/bounties/a24f57a4-22e3-4a17-8227-6a410a11498a
https://github.com/answerdev/answer/commit/90bfa0dcc7b49482f1d1e31aee3ab073f3c13dd9
Affected packages
Git
/
github.com/answerdev/answer
Affected ranges
Type
GIT
Repo
https://github.com/answerdev/answer
Events
Introduced
0
Unknown introduced commit / All previous commits are affected
Fixed
b7437e3c5b70641fc9e37edb7195b7690debaf39
Type
GIT
Repo
https://github.com/apache/incubator-answer
Events
Introduced
0
Unknown introduced commit / All previous commits are affected
Fixed
90bfa0dcc7b49482f1d1e31aee3ab073f3c13dd9
Affected versions
v0.*
v0.2.0
v0.3.0
v0.4.0
v0.5.0
v1.*
v1.0.0
v1.0.1
v1.0.2
v1.0.3
v1.0.4
v1.0.5
CVE-2023-1240 - OSV