CVE-2023-45552 Information

Share on:

Description

In VeridiumID before 3.5.0 a stored cross-site scripting (XSS) vulnerability has been discovered in the admin portal that allows an authenticated attacker to take over all accounts by sending malicious input via the self-service portal.

Reference

https://veridiumid.com/veridium-id-authentication-platform/ https://docs.veridiumid.com/docs/v3.5/security-advisory#id-%28v3.52%29SecurityAdvisory-Acknowledgement