CVE-2023-1106

Cross-site Scripting (XSS) - Reflected in flatpressblog/flatpress

CVSS 5.3 MEDIUMEPSS 0.6%CWE-79

Cross-site Scripting (XSS) - Reflected in GitHub repository flatpressblog/flatpress prior to 1.3.

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N

Productos afectados

flatpressblog · flatpressblog/flatpress

¿Quieres saber si tu infraestructura está expuesta a esto?

Hablar con TrueHacking →

Referencias

https://github.com/flatpressblog/flatpress/commit/5f23b4c2eac294cc0ba5e541f83a6f8a26f9fed1 https://huntr.dev/bounties/1288ec00-f69d-4b84-abce-efc9a97941a0