CVE-2023-37613 Information

Description

A cross-site scripting (XSS) vulnerability in Assembly Software Trialworks v11.4 allows attackers to execute arbitrary web scripts or HTML via injecting a crafted payload into the asset src parameter.

Reference

https://github.com/HeidiSecurities/CVEs/blob/main/CVE-2023-37613/Trialworks.md https://github.com/HeidiSecurities/CVEs/blob/main/Trialworks.md