Описание
KodExplorer 4.51 contains a Cross-Site Scripting (XSS) vulnerability in the Description box of the Light App creation feature. An attacker can exploit this vulnerability by injecting XSS syntax into the Description field.
KodExplorer 4.51 contains a Cross-Site Scripting (XSS) vulnerability in the Description box of the Light App creation feature. An attacker can exploit this vulnerability by injecting XSS syntax into the Description field.
Ссылки
- https://nvd.nist.gov/vuln/detail/CVE-2023-37153
- https://github.com/Trinity-SYT-SECURITY/XSS_vuln_issue/blob/main/KodExplorer4.51.03.md
- https://github.com/kalcaddle/KodExplorer
- https://www.chtsecurity.com/news/13a86b33-7e49-4167-9682-7ff3f51cbcba%20
- https://www.chtsecurity.com/news/55f0a781-f7bf-4b2f-b2cc-7957fdf846da
Связанные уязвимости
CVSS3: 6.1
nvd
больше 2 лет назад
KodExplorer 4.51 contains a Cross-Site Scripting (XSS) vulnerability in the Description box of the Light App creation feature. An attacker can exploit this vulnerability by injecting XSS syntax into the Description field.