cve/CVE-2023-26846.md at main

admin/cve

Fork 0

mirror of https://github.com/0xMarcio/cve.git synced 2025-05-06 02:31:38 +00:00

marc 555e9c7de4 Update Sat May 25 21:48:12 CEST 2024

2024-05-25 21:48:12 +02:00

747 B

Raw Permalink Blame History

CVE-2023-26846

Description

A stored cross-site scripting (XSS) vulnerability in OpenCATS v0.9.7 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the city parameter at opencats/index.php?m=candidates.

POC

Reference

No PoCs from references.

Github

https://github.com/ARPSyndicate/cvemon
https://github.com/cassis-sec/CVE
https://github.com/cassis-sec/cassis-sec

747 B Raw Permalink Blame History

CVE-2023-26846

Description

POC

Reference

Github

747 B

Raw Permalink Blame History