Cross-site Scripting (XSS) - Stored in froxlor/froxlor
CVE-2023-5564

4.8MEDIUM

Key Information:

Vendor

froxlor

Status
froxlor/froxlor
Vendor
CVE Published:
13 October 2023

What is CVE-2023-5564?

Cross-site Scripting (XSS) - Stored in GitHub repository froxlor/froxlor prior to 2.1.0-dev1.

Affected Version(s)

froxlor/froxlor < 2.1.0-dev1

References

https://huntr.dev/bounties/9254d8f3-a847-4ae8-8477-d2ce02...
https://github.com/froxlor/froxlor/commit/e8ed43056c16655...

CVSS V3.1

Score:
4.8
Severity:
MEDIUM
Confidentiality:
Low
Integrity:
Low
Availability:
Low
Attack Vector:
Network
Attack Complexity:
Low
Privileges Required:
High
User Interaction:
Required
Scope:
Changed

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.