Lucene search
PRIOn knowledge basePRION:CVE-2023-37658HistoryJul 11, 2023 - 3:15 p.m.
Cross site scripting
2023-07-1115:15:00
PRIOn knowledge base
www.prio-n.com
4
fast-poster
v2.15.0
cross site scripting
file upload
xss
img
file suffix
stored xss
nvd
0.001 Low
EPSS
Percentile
27.6%
fast-poster v2.15.0 is vulnerable to Cross Site Scripting (XSS). File upload check binary of img, but without strictly check file suffix at /server/fast.py -> ApiUploadHandler.post causes stored XSS
| CPE | Name | Operator | Version |
|---|---|---|---|
| fast-poster | eq | 2.15.0 |
References
Related
osv
osv
CVE-2023-37658
2023-07-11 15:15:20
cvelist
cvelist
CVE-2023-37658
2023-07-11 00:00:00
nvd
nvd
CVE-2023-37658
2023-07-11 15:15:20
cve
cve
CVE-2023-37658
2023-07-11 15:15:20