Vulnerability CVE-2023-46693
Published: 2023-12-07   Modified: 2023-12-14

Description:
Cross Site Scripting (XSS) vulnerability in FormaLMS before 4.0.5 allows attackers to run arbitrary code via title parameters.

Type:

CWE-79

 (Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting'))

Affected software
Formalms -> Formalms 

 References:
https://www.formalms.org/download/342-forma-lms-4-0-5.html
Copyright 2024, cxsecurity.com

 

Back to Top