CVE-2023-6613 | Typecho 1.2.1 Logo /admin/options-theme.php cross site scripting

Inserito da Angelo Barbosa | Dic 8, 2023 | CVE

A vulnerability classified as problematic has been found in Typecho 1.2.1. Affected is an unknown function of the file /admin/options-theme.php of the component Logo Handler. The manipulation leads to cross site scripting.

This vulnerability is traded as CVE-2023-6613. It is possible to launch the attack remotely. Furthermore, there is an exploit available.

The vendor was contacted early about this disclosure but did not respond in any way.

CVE-2023-6613 | Typecho 1.2.1 Logo /admin/options-theme.php cross site scripting

Post correlati

CVE-2023-6982 | josevega Display Custom Fields in the Frontend Plugin up to 1.2.1 on WordPress cross site scripting

CVE-2024-7624 | Zephyr Project Manager Plugin up to 3.3.101 on WordPress improper authentication

CVE-2024-48903 | Trend Micro Deep Security access control (ZDI-24-1419)

CVE-2024-46466 | ZONECENTRAL up to 2021.2/2024.3 on Windows Privilege Escalation