Stored XSS Vulnerability in Repox

Stored XSS Vulnerability in Repox

CVE-2023-6720 · MEDIUM Severity

CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N

An XSS vulnerability stored in Repox has been identified, which allows a local attacker to store a specially crafted JavaScript payload on the server, due to the lack of proper sanitisation of field elements, allowing the attacker to trigger the malicious payload when the application loads.

Learn more about our Cis Benchmark Audit For Server Software.