CVE-2023-40819 Information

Description

ID4Portais in version < V.2022.837.002a returns message parameter unsanitized in the response resulting in a HTML Injection vulnerability.

Reference

https://www.id4software.com/ https://miguelsantareno.github.io/id4Portais.txt