Podatność CVE-2023-46693
Publikacja: 2023-12-07   Modyfikacja: 2023-12-14

Opis:
Cross Site Scripting (XSS) vulnerability in FormaLMS before 4.0.5 allows attackers to run arbitrary code via title parameters.

Typ:

CWE-79

 (Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting'))

Affected software
Formalms -> Formalms 

 Referencje:
https://www.formalms.org/download/342-forma-lms-4-0-5.html
Copyright 2024, cxsecurity.com

 

Back to Top