CVE-2023-48314 | CollaboraOnline prior 23.5.403 Built-in CODE Server App proxy.php cross site scripting (GHSA-qjrm-q4h5-v3r2)

Inserito da Angelo Barbosa | Dic 2, 2023 | CVE

A vulnerability was found in CollaboraOnline. It has been classified as problematic. This affects an unknown part of the file proxy.php of the component Built-in CODE Server App. The manipulation leads to cross site scripting.

This vulnerability is uniquely identified as CVE-2023-48314. It is possible to initiate the attack remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2023-48314 | CollaboraOnline prior 23.5.403 Built-in CODE Server App proxy.php cross site scripting (GHSA-qjrm-q4h5-v3r2)

Post correlati

CVE-2023-40085 | Google Android 12/12L/13 ShimConverter.cpp convertSubgraphFromHAL information disclosure

CVE-2024-4183 | Mattermost up to 8.1.11/9.4.4/9.5.2/9.6.0 API getSessions resource consumption

CVE-2024-35729 | Tickera Plugin up to 3.5.2.6 on WordPress authorization

CVE-2023-43304 | Park Dandan mini-app on Line 13.6.1 Channel Access Token information disclosure