Headline
CVE-2023-26577: Stored Cross-site Scripting In IDAttend’s IDWeb Application
Stored cross-site scripting in the IDAttend’s IDWeb application 3.1.052 and earlier allows attackers to hijack the browsing session of the logged in user.
Discovered by Jack Misiura on behalf of The Missing Link Security
Vulnerability Details
Stored cross-site scripting in the IDAttend’s IDWeb application 3.1.013 allows attackers to hijack the browsing session of the logged in user.
Affected Versions
Discovered in: 3.1.013
Fixed Versions
Fixed in: 3.1.053