Lucene search
MitreCVELIST:CVE-2023-37658HistoryJul 11, 2023 - 12:00 a.m.
CVE-2023-37658
2023-07-1100:00:00
mitre
www.cve.org
fast-poster
xss
file upload
security
api
python
0.001 Low
EPSS
Percentile
27.6%
fast-poster v2.15.0 is vulnerable to Cross Site Scripting (XSS). File upload check binary of img, but without strictly check file suffix at /server/fast.py -> ApiUploadHandler.post causes stored XSS
References
Related
prion
prion
Cross site scripting
2023-07-11 15:15:00
osv
osv
CVE-2023-37658
2023-07-11 15:15:20
nvd
nvd
CVE-2023-37658
2023-07-11 15:15:20
cve
cve
CVE-2023-37658
2023-07-11 15:15:20