CVE-2023-33732 Information

Description

Cross Site Scripting (XSS) in the New Policy form in Microworld Technologies eScan management console 14.0.1400.2281 allows a remote attacker to inject arbitrary code via the vulnerable parameters type txtPolicyType and Deletefileval.

Reference

https://github.com/sahiloj/CVE-2023-33733/blob/main/CVE-2023-33733.md