CVE-2023-5024

See a problem?
Please try reporting it to the source first.

Source

https://cve.org/CVERecord?id=CVE-2023-5024

Import Source

https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2023-5024.json

JSON Data

https://api.test.osv.dev/v1/vulns/CVE-2023-5024

Published

2023-09-17T07:15:10.063Z

Modified

2025-11-15T07:02:46.121160Z

Severity

4.8 (Medium) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:C/C:L/I:L/A:N CVSS Calculator

Summary

[none]

Details

A vulnerability was found in Planno 23.04.04. It has been classified as problematic. This affects an unknown part of the component Comment Handler. The manipulation leads to cross site scripting. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used. The identifier VDB-239865 was assigned to this vulnerability.

References

Affected packages

Git / github.com/planningbiblio/planningbiblio

Affected ranges

Type: GIT
Repo: https://github.com/planningbiblio/planningbiblio
Events: Introduced

0 Unknown introduced commit / All previous commits are affected

Last affected

8de05926d5bb889b940cd53b7f7c226faa6fe12a

Affected versions

22.*

22.11.00.006

v19.*

v19.04.00

v19.04.01

v19.10.00

v20.*

v20.04.00

v20.10.00

v21.*

v21.04.00

v21.10.00

v22.*

v22.04.00

v22.10.00

v22.11.00.005

v22.11.00.007

v23.*

v23.04.00.000

v23.04.01.000

v23.04.02

v23.04.03

v23.04.04

Database specific

source

"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2023-5024.json"