CVE-2023-48881 | EyouCMS 1.6.4-UTF8-SP1 login.php Field Title cross site scripting (Issue 53)

Inserito da Angelo Barbosa | Nov 29, 2023 | CVE

A vulnerability was found in EyouCMS 1.6.4-UTF8-SP1 and classified as problematic. This issue affects some unknown processing of the file /login.php?m=admin&c=Field&a=arctype_add&_ajax=1&lang=cn. The manipulation of the argument Field Title leads to cross site scripting.

The identification of this vulnerability is CVE-2023-48881. The attack may be initiated remotely. There is no exploit available.

CVE-2023-48881 | EyouCMS 1.6.4-UTF8-SP1 login.php Field Title cross site scripting (Issue 53)

Post correlati

CVE-2024-30426 | HashThemes Hash Elements Plugin up to 1.3.3 on WordPress cross site scripting

CVE-2024-39287 | Dorsett Controls InfoScan 1.32/1.33/1.35 Central Server Update Server information disclosure (icsa-24-221-01)

CVE-2024-32340 | WonderCMS 3.4.3 Menu Module WEBSITE TITLE cross site scripting

CVE-2024-24941 | JetBrains IntelliJ IDEA prior 2023.3.3 Authentication Token information disclosure