Farsight Provide Server vulnerabilities
2 known vulnerabilities affecting farsight/provide_server.
Total CVEs
2
CISA KEV
0
Public exploits
1
Exploited in wild
0
Severity breakdown
MEDIUM2
Vulnerabilities
Page 1 of 1
CVE-2023-23286P3MEDIUMCVSS 6.1PoCv14.42023-02-10
CVE-2023-23286 [MEDIUM] CWE-79 CVE-2023-23286: Cross Site Scripting (XSS) vulnerability in Provide server 14.4 allows attackers to execute arbitrar
Cross Site Scripting (XSS) vulnerability in Provide server 14.4 allows attackers to execute arbitrary code through the server-log via username field from the login form.
nvd
CVE-2023-37222P4MEDIUMCVSS 4.8v14.52023-09-03
CVE-2023-37222 [MEDIUM] CWE-79 CVE-2023-37222: Farsight Tech Nordic AB ProVide version 14.5 - Multiple XSS vulnerabilities (CWE-79) can be exp
Farsight Tech Nordic AB ProVide version 14.5 - Multiple XSS vulnerabilities (CWE-79) can be exploited by a user with administrator privilege.
nvd