cve/CVE-2022-23923.md at main

admin/cve

Fork 0

mirror of https://github.com/0xMarcio/cve.git synced 2025-05-05 10:17:57 +00:00

0xMarcio 48a00929ac Removed duplicates

2024-06-18 02:51:15 +02:00

744 B

Raw Permalink Blame History

CVE-2022-23923

Description

All versions of package jailed are vulnerable to Sandbox Bypass via an exported alert() method which can access the main application. Exported methods are stored in the application.remote object.

POC

Reference

https://snyk.io/vuln/SNYK-JAVA-ORGWEBJARSBOWER-2441254
https://snyk.io/vuln/SNYK-JS-JAILED-2391490

Github

No PoCs found on GitHub currently.

744 B Raw Permalink Blame History

CVE-2022-23923

Description

POC

Reference

Github

744 B

Raw Permalink Blame History