Security
Headlines
HeadlinesLatestCVEs

Headline

CVE-2022-23896: Cross-site Scripting (XSS) - Stored in admidio

Admidio 4.1.2 version is affected by stored cross-site scripting (XSS).

CVE
Open in Source
#xss#vulnerability#google

Valid

Reported on

Jan 11th 2022

Description

Stored xss

Proof of Concept

onmouseover="alert(1)">link</a>

Video : https://drive.google.com/file/d/1WzArNdgXgjVOS6qsePRvGWIz6ljtxApx/view?usp=sharing

Impact

Through this vulnerability, an attacker is capable to execute malicious scripts.

CVE: Latest News

CVE-2023-50976: Transactions API Authorization by oleiman · Pull Request #14969 · redpanda-data/redpanda
CVE
CVE-2023-6905
CVE
CVE-2023-6903
CVE
CVE-2023-6904
CVE
CVE-2023-3907
CVE