CVE-2023-46059 in geekloginformation

Résumé

par MITRE • 25/10/2023

Cross Site Scripting (XSS) vulnerability in Geeklog-Core geeklog v.2.2.2 allows a remote attacker to execute arbitrary code via a crafted payload to the Service, and website URL to Ping parameters of the admin/trackback.php component.

If you want to get best quality of vulnerability data, you may have to visit VulDB.

Réserver

16/10/2023

Divulgation

25/10/2023

Modérer

accepté

Entrée

VDB-243193

CPE

prêt

EPSS

0.00596

KEV

non

Activités

très faible

Secteur

Education

Sources

Interested in the pricing of exploits?

See the underground prices here!