| |
Vulnerability CVE-2023-1715
Published: 2023-11-01
| Description: |
A logic error when using mb_strpos() to check for potential XSS payload in Bitrix24 22.0.300 allows attackers to bypass XSS sanitisation via placing HTML tags at the begining of the payload.
|
References: |
https://starlabs.sg/advisories/23/23-1715/
|
|
|
closedb();
?>
Copyright 2026, cxsecurity.com
|
|
|