Lucene search
MitreCVE-2023-41451HistorySep 27, 2023 - 11:15 p.m.
CVE-2023-41451
2023-09-2723:15:11
CWE-79
mitre
web.nvd.nist.gov
29
cve-2023-41451
cross site scripting
phpkobo ajaxnewticker
remote code execution
security vulnerability
nvd
CVSS3
6.1
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
CHANGED
Confidentiality Impact
LOW
Integrity Impact
LOW
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
AI Score
6.4
Confidence
High
EPSS
0.002
Percentile
52.4%
Cross Site Scripting vulnerability in phpkobo AjaxNewTicker v.1.0.5 allows a remote attacker to execute arbitrary code via a crafted payload to the txt parameter in the index.php component.
Affected configurations
Node
phpkoboajaxnewstickerMatch1.0.5
| Vendor | Product | Version | CPE |
|---|---|---|---|
| phpkobo | ajaxnewsticker | 1.0.5 | cpe:2.3:a:phpkobo:ajaxnewsticker:1.0.5:*:*:*:*:*:*:* |
Related
nvd
nvd
CVE-2023-41451
2023-09-27 23:15:11
prion
prion
Cross site scripting
2023-09-27 23:15:00
cvelist
cvelist
CVE-2023-41451
2023-09-27 00:00:00
CVSS3
6.1
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
CHANGED
Confidentiality Impact
LOW
Integrity Impact
LOW
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
AI Score
6.4
Confidence
High
EPSS
0.002
Percentile
52.4%
Related for CVE-2023-41451