{"vulnerability": "CVE-2023-45471", "sightings": [{"uuid": "60934221-8880-49c4-b50e-cb62704fbf10", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-45471", "type": "seen", "source": "https://t.me/cibsecurity/72642", "content": "\u203c CVE-2023-45471 \u203c\n\nThe QAD Search Server is vulnerable to Stored Cross-Site Scripting (XSS) in versions up to, and including, 1.0.0.315 due to insufficient checks on indexes. This makes it possible for unauthenticated attackers to create a new index and inject a malicious web script into its name, that will execute whenever a user accesses the search page.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-10-20T07:35:02.000000Z"}]}