Stored Cross-site Scripting (XSS) Vulnerability in Teamwork Cloud (No Magic Release 2021x - 2022x) Allows Arbitrary Code Execution

Stored Cross-site Scripting (XSS) Vulnerability in Teamwork Cloud (No Magic Release 2021x - 2022x) Allows Arbitrary Code Execution

CVE-2023-3588 · MEDIUM Severity

CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N

A stored Cross-site Scripting (XSS) vulnerability affecting Teamwork Cloud from No Magic Release 2021x through No Magic Release 2022x allows an attacker to execute arbitrary script code.

Learn more about our Cloud Audit.