CVE-2023-45552 Information
Share on:
Apr 03, 2024
cve
Description
In VeridiumID before 3.5.0 a stored cross-site scripting (XSS) vulnerability has been discovered in the admin portal that allows an authenticated attacker to take over all accounts by sending malicious input via the self-service portal.
Reference
https://veridiumid.com/veridium-id-authentication-platform/ https://docs.veridiumid.com/docs/v3.5/security-advisory#id-%28v3.52%29SecurityAdvisory-Acknowledgement