CVE-2023-50473

CVE-2023-50473

EPSS 0.4%

Cross-Site Scripting (XSS) vulnerability in bill-ahmed qbit-matUI version 1.16.4, allows remote attackers to obtain sensitive information via fixed session identifiers (SID) in index.js file.

Produtos afetados

Quer saber se a sua infraestrutura está exposta a isto?

Falar com a TrueHacking →

Referências

https://github.com/bill-ahmed/qbit-matUI/issues/207 https://github.com/tianjk99/Cryptographic-Misuses/blob/main/CVE-2023-50473.md