Vulnerability CVE-2023-46854
Published: 2023-10-28   Modified: 2023-10-29

Description:
Proxmox proxmox-widget-toolkit before 4.0.9, as used in multiple Proxmox products, allows XSS via the edit notes feature.

 References:
https://git.proxmox.com/?p=proxmox-widget-toolkit.git;a=commit;h=89699c6466cfd9cc3a81fbc926b62f122c33c23c
https://git.proxmox.com/?p=proxmox-widget-toolkit.git;a=commit;h=1326f771b959e576d140da2249c8b5424da6c80d
https://pve.proxmox.com/wiki/Package_Repositories#sysadmin_test_repo
Copyright 2026, cxsecurity.com

 

Back to Top