cve/CVE-2023-45889.md at 694ac234a19db48cd3b1f78eb5f461ab1f6c99f7

admin/cve

mirror of https://github.com/0xMarcio/cve.git synced 2025-05-06 02:31:38 +00:00

0xMarcio 48a00929ac Removed duplicates

2024-06-18 02:51:15 +02:00

Description

A Universal Cross Site Scripting (UXSS) vulnerability in ClassLink OneClick Extension through 10.8 allows remote attackers to inject JavaScript into any webpage. NOTE: this issue exists because of an incomplete fix for CVE-2022-48612.

POC

Reference

https://blog.zerdle.net/classlink/
https://blog.zerdle.net/classlink2/

Github

No PoCs found on GitHub currently.

729 B Raw Blame History

CVE-2023-45889

Description

POC

Reference

Github

729 B

Raw Blame History