CVE-2023-0028
published 2023-01-01CVE-2023-0028: Cross-site Scripting (XSS) - Stored in GitHub repository linagora/twake prior to 2023.Q1.1200+.
PriorityP335medium5.4CVSS 3.1
AVNACLPRLUIRSCCLILAN
EPSS
40.92%
98.5th percentile
Cross-site Scripting (XSS) - Stored in GitHub repository linagora/twake prior to 2023.Q1.1200+.
Affected
2 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| linagora | linagora_twake | >= unspecified < 2023.Q1.1200+ | 2023.Q1.1200+ |
| linagora | twake | <= 2022.q4.1120 | — |
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
No detection rules found.
No public exploits indexed.
No writeups or analysis indexed.
https://github.com/linagora/Twake/pull/2678/commits/c0708c397e199c68cea0db9f59d29d7dbdcdde7bhttps://huntr.dev/bounties/bfd935f4-2d1d-4d3f-8b59-522abe7dd065https://github.com/linagora/Twake/pull/2678/commits/c0708c397e199c68cea0db9f59d29d7dbdcdde7bhttps://huntr.dev/bounties/bfd935f4-2d1d-4d3f-8b59-522abe7dd065
2023-01-01
Published