CVE-2023-3783

Webile HTTP POST Request cross site scripting

CVSS 3.5 LOWEPSS 0.5%CWE-79

A vulnerability was found in Webile 1.0.1. It has been classified as problematic. Affected is an unknown function of the component HTTP POST Request Handler. The manipulation of the argument new_file_name/c leads to cross site scripting. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used. VDB-235050 is the identifier assigned to this vulnerability.

CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:N/I:L/A:N

Productos afectados

n/a · Webile

¿Quieres saber si tu infraestructura está expuesta a esto?

Hablar con TrueHacking →

Referencias

https://seclists.org/fulldisclosure/2023/Jul/38 https://vuldb.com/?ctiid.235050 https://vuldb.com/?id.235050 https://www.vulnerability-lab.com/get_content.php?id=2321