← Back to CVE List
CVE-2023-52265
Published:
2023-12-30T23:15Z
Last Modified:
2024-11-21T08:39Z
Source:
MITRE CVE List
License:
MITRE-CVE-TOS
IDURAR (aka idurar-erp-crm) through 2.0.1 allows stored XSS via a PATCH request with a crafted JSON email template in the /api/email/update data. > MITRE Terms of Use apply – see LICENSE‑MITRE.txt