| |
Vulnerability CVE-2023-22902
Published: 2023-03-27
| Description: |
Openfind Mail2000 file uploading function has insufficient filtering for user input. An authenticated remote attacker with general user privilege can exploit this vulnerability to inject JavaScript, conducting an XSS attack. |
Type:
CWE-79 (Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting'))
References: |
https://www.twcert.org.tw/tw/cp-132-6953-79236-1.html
|
|
|
closedb();
?>
Copyright 2026, cxsecurity.com
|
|
|