Vulnerability CVE-2023-43325

Vulnerability CVE-2023-43325

Published: 2023-09-26

Description:

A reflected cross-site scripting (XSS) vulnerability in the data[redirect_url] parameter of mooSocial v3.1.8 allows attackers to steal user's session cookies and impersonate their account via a crafted URL.

References:

https://moosocial.com/

https://travel.moosocial.com/

https://github.com/ahrixia/CVE-2023-43325

Copyright 2026, cxsecurity.com