Vulnerability CVE-2023-0301
Published: 2023-01-14

Description:
Cross-site Scripting (XSS) - Stored in GitHub repository alfio-event/alf.io prior to Alf.io 2.0-M4-2301.

Type:

CWE-79

 (Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting'))

 References:
https://huntr.dev/bounties/8a91e127-2903-4c6b-9a66-e4d2e30f8dec
https://github.com/alfio-event/alf.io/commit/21cb2866e5f58b4a2b4a2cb0066479bbb26f7b39
Copyright 2026, cxsecurity.com

 

Back to Top