Show filters
1 Total Results
Displaying 1-1 of 1
Sort by:
Attacker Value
Unknown

CVE-2022-46889

Disclosure Date: January 19, 2023 (last updated October 08, 2023)
A persistent cross-site scripting (XSS) vulnerability in NexusPHP before 1.7.33 allows remote authenticated attackers to permanently inject arbitrary web script or HTML via the title parameter used in /subtitles.php.
Attack Vector: NetworkPrivileges: LowUser Interaction: Required
0
0