mirror of
https://github.com/0xMarcio/cve.git
synced 2025-06-19 17:30:12 +00:00
855 B
855 B
CVE-2024-27593
Description
A stored cross-site scripting (XSS) vulnerability in the Filter function of Eramba Version 3.22.3 Community Edition allows authenticated attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the filter name field. This vulnerability has been fixed in version 3.23.0.
POC
Reference
- https://blog.smarttecs.com/posts/2024-002-cve-2024-27593/
- https://blog.smarttecs.com/posts/2024-002-cve-2024-27593/