What the vulnerability does
01Description
Azure DevOps Server Spoofing Vulnerability
CVE-2023-36869
MEDIUM
CVE-2023-36869: Azure DevOps Server Spoofing Vulnerability
CVSS base score
6.3/10
CVSS vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L/RL:O/RC:C
Key dates
02Disclosure timeline
August 8, 2023
CVE published
January 1, 2025
Record updated
External resources
03References
Related vulnerabilities
04Related CVE
CVE-2025-10631 itsourcecode Online Petshop Management System Available Products addcnp.php cross site scripting
CVE-2026-25488 Craft Commerce has Stored XSS in Tax Categories (Name & Description) Fields Leading to Potential Privilege Escalation
CVE-2025-55105 BUG-000177336 - ArcGIS Enterprise Sites has a stored Cross-site Scripting vulnerability.
CVE-2021-20280
CVE-2025-59821 DNN vulnerable to Reflected Cross-Site Scripting (XSS) using url to profile
