Vulnerabilities (CVE)

Join the Common Vulnerabilities and Exposures (CVE) community and start to get notified about new vulnerabilities.

Filtered by vendor Erxes Subscribe
Filtered by product Erxes
Total 1 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2021-32853 1 Erxes 1 Erxes 2023-03-02 N/A 9.6 CRITICAL
Erxes, an experience operating system (XOS) with a set of plugins, is vulnerable to cross-site scripting in versions 0.22.3 and prior. This results in client-side code execution. The victim must follow a malicious link or be redirected there from malicious web site. There are no known patches.