mirror of
https://github.com/0xMarcio/cve.git
synced 2025-05-30 02:00:45 +00:00
750 B
750 B
CVE-2023-43358
Description
Cross Site Scripting vulnerability in CMSmadesimple v.2.2.18 allows a local attacker to execute arbitrary code via a crafted script to the Title parameter in the News Menu component.
POC
Reference
- https://github.com/sromanhu/CMSmadesimple-Stored-XSS---News
- https://github.com/sromanhu/CVE-2023-43358-CMSmadesimple-Stored-XSS---News