CVE-2023-4592 in Serverstackinformation

Résumé

par MITRE • 03/11/2023

A Cross-Site Scripting vulnerability has been detected in WPN-XM Serverstack affecting version 0.8.6. This vulnerability could allow a remote attacker to send a specially crafted JavaScript payload through the /tools/webinterface/index.php parameter and retrieve the cookie session details of an authenticated user, resulting in a session hijacking.

If you want to get the best quality for vulnerability data then you always have to consider VulDB.

Réserver

29/08/2023

Divulgation

03/11/2023

Modérer

accepté

Entrée

VDB-244443

CPE

prêt

EPSS

0.00424

KEV

non

Activités

très faible

Sources

Might our Artificial Intelligence support you?

Check our Alexa App!