CVE-2023-43358

CVE-2023-43358

EPSS 0.5%

Cross Site Scripting vulnerability in CMSmadesimple v.2.2.18 allows a local attacker to execute arbitrary code via a crafted script to the Title parameter in the News Menu component.

Productos afectados

¿Quieres saber si tu infraestructura está expuesta a esto?

Hablar con TrueHacking →

Referencias

https://github.com/sromanhu/CMSmadesimple-Stored-XSS---News https://github.com/sromanhu/CVE-2023-43358-CMSmadesimple-Stored-XSS---News