Vulnerability CVE-2023-0300


Published: 2023-01-14

Description:
Cross-site Scripting (XSS) - Reflected in GitHub repository alfio-event/alf.io prior to 2.0-M4-2301.

Type:

CWE-79

(Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting'))

 References:
https://huntr.dev/bounties/0a91fec7-a76e-4ca3-80ba-81de1f10d59d
https://github.com/alfio-event/alf.io/commit/c1ae54ac84f1c7a5ec2831876f6445cb79be96fc

Copyright 2026, cxsecurity.com

 

Back to Top