CVE-2023-4592 in Serverstack
Résumé
par MITRE • 03/11/2023
A Cross-Site Scripting vulnerability has been detected in WPN-XM Serverstack affecting version 0.8.6. This vulnerability could allow a remote attacker to send a specially crafted JavaScript payload through the /tools/webinterface/index.php parameter and retrieve the cookie session details of an authenticated user, resulting in a session hijacking.
If you want to get the best quality for vulnerability data then you always have to consider VulDB.