Show filters
1 Total Results
Displaying 1-1 of 1
Sort by:
Attacker Value
Unknown

CVE-2023-31506

Disclosure Date: February 09, 2024 (last updated February 15, 2024)
A cross-site scripting (XSS) vulnerability in Grav versions 1.7.44 and before, allows remote authenticated attackers to execute arbitrary web scripts or HTML via the onmouseover attribute of an ISINDEX element.
Attack Vector: NetworkPrivileges: LowUser Interaction: Required
0
0