CVE-2013-1823
Redhat Subscription Asset Manager < 1.2.0 - XSS
Title source: ruleDescription
Cross-site scripting (XSS) vulnerability in the Notifications form in Red Hat Subscription Asset Manager before 1.2.1 allows remote attackers to inject arbitrary web script or HTML via the username field.
Scores
EPSS
0.0028
EPSS Percentile
50.9%
Details
CWE
CWE-79
Status
published
Products (4)
redhat/subscription_asset_manager
< 1.2.0
redhat/subscription_asset_manager
redhat/subscription_asset_manager
n/a/n/a
Published
Apr 02, 2013
Tracked Since
Feb 18, 2026