CVE-2023-50473

CVE-2023-50473

EPSS 0.4%

Cross-Site Scripting (XSS) vulnerability in bill-ahmed qbit-matUI version 1.16.4, allows remote attackers to obtain sensitive information via fixed session identifiers (SID) in index.js file.

Productos afectados

¿Quieres saber si tu infraestructura está expuesta a esto?

Hablar con TrueHacking →

Referencias

https://github.com/bill-ahmed/qbit-matUI/issues/207 https://github.com/tianjk99/Cryptographic-Misuses/blob/main/CVE-2023-50473.md