๐Ÿ” CVE Alert

CVE-2023-3067

MEDIUM 4.6

Cross-site Scripting (XSS) - Stored in zadam/trilium

CVSS Score
4.6
EPSS Score
0.0%
EPSS Percentile
0th

Cross-site Scripting (XSS) - Stored in GitHub repository zadam/trilium prior to 0.59.4.

CWE CWE-79
Vendor zadam
Product zadam/trilium
Published Jun 2, 2023
Last Updated Jan 8, 2025
Stay Ahead of the Next One

Get instant alerts for zadam zadam/trilium

Be the first to know when new medium vulnerabilities affecting zadam zadam/trilium are published โ€” delivered to Slack, Telegram or Discord.

Get Free Alerts โ†’ Free ยท No credit card ยท 60 sec setup

CVSS v3 Breakdown

CVSS:3.0/AV:A/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:L

Affected Versions

zadam / zadam/trilium
unspecified < 0.59.4

References

NVD โ†— CVE.org โ†— EPSS Data โ†—
huntr.dev: https://huntr.dev/bounties/4772ceb7-1594-414d-9b20-5b82029da7b6 github.com: https://github.com/zadam/trilium/commit/4c3fcc3ea6f37debcb87ac1a7f5698c27be0e67b