CVE-2023-47620 | koush scrypted up to 0.55.0 plugin-http.ts owner/pkg cross site scripting (GHSL-2023-218)

Posted by Angelo Barbosa | Dec 14, 2023 | CVE

A vulnerability classified as problematic was found in koush scrypted up to 0.55.0. Affected by this vulnerability is an unknown functionality of the file plugin-http.ts. The manipulation of the argument owner/pkg leads to cross site scripting.

This vulnerability is known as CVE-2023-47620. The attack can be launched remotely. There is no exploit available.

CVE-2023-47620 | koush scrypted up to 0.55.0 plugin-http.ts owner/pkg cross site scripting (GHSL-2023-218)

Related Posts

CVE-2023-49837 | Code Embed Plugin up to 2.3.6 on WordPress denial of service

CVE-2024-2152 | SourceCodester Online Mobile Management Store 1.0 manage_product.php id sql injection

CVE-2024-4148 | lunary-ai lunary 1.2.10 redos

CVE-2024-40787 | Apple watchOS permission