CHT Security SOC Discovered Vulnerability in a Network File Manager Platform

Summary

Vulnerability List

[CVE-2023-37153] – XSS

Details

1. XSS

Description

A network file manager contains a vulnerability (CVE-2023-37153), which can be triggered by entering XSS syntax in the function of creating an application.

Impact

This manager allows users to create applications in Light APP. After clicking on the option to create an app, you will see the Description box, fill in the XSS syntax to trigger.

Known Affected Software

• Version  4.51.03

Credits

• Noflag (CHT Security)