Security
Headlines
HeadlinesLatestCVEs

Headline

GHSA-432f-967f-vxg4: Evolution CMS Cross-site Scripting vulnerability

Cross-site scripting (XSS) vulnerability in evolution v.3.2.3 allows a local attacker to execute arbitrary code via a crafted payload injected into the cmsadmin, cmsadminemail, cmspassword and cmspasswordconfim parameters

ghsa
Open in Source
#xss#vulnerability#git

Evolution CMS Cross-site Scripting vulnerability

Moderate severity GitHub Reviewed Published Oct 20, 2023 to the GitHub Advisory Database • Updated Oct 20, 2023

Related news

CVE-2023-43340: GitHub - sromanhu/-CVE-2023-43340-Evolution-Reflected-XSS---Installation-Admin-Options: Evolution CMS 3.2.3 is affected by a Cross-Site Scripting (XSS) vulnerability that allows attackers to execute a

Cross-site scripting (XSS) vulnerability in evolution v.3.2.3 allows a local attacker to execute arbitrary code via a crafted payload injected into the cmsadmin, cmsadminemail, cmspassword and cmspasswordconfim parameters

ghsa: Latest News

GHSA-7m27-7ghc-44w9: Next.js Allows a Denial of Service (DoS) with Server Actions
ghsa