← volver
CVE-2023-49807

CVE-2023-49807

EPSS 0.3%
Stored cross-site scripting vulnerability when processing the MathJax exists in GROWI versions prior to v6.0.0. If this vulnerability is exploited, an arbitrary script may be executed on the web browser of the user who accessed the site using the product.
Productos afectados
WESEEK, Inc. · GROWI

¿Quieres saber si tu infraestructura está expuesta a esto?

Hablar con TrueHacking →
Referencias
https://jvn.jp/en/jp/JVN18715935/https://weseek.co.jp/ja/news/2023/11/21/growi-prevent-xss6/