Lucene search
MitreCVELIST:CVE-2023-48866HistoryDec 04, 2023 - 12:00 a.m.
CVE-2023-48866
2023-12-0400:00:00
mitre
www.cve.org
1
cross-site scripting
grocy
cookies theft
EPSS
0
Percentile
14.0%
A Cross-Site Scripting (XSS) vulnerability in the recipe preparation component within /api/objects/recipes and note component within /api/objects/shopping_lists/ of Grocy <= 4.0.3 allows attackers to obtain the victimβs cookies.
Related
nvd
nvd
CVE-2023-48866
2023-12-04 15:15:07
osv
osv
CVE-2023-48866
2023-12-04 15:15:07
cve
cve
CVE-2023-48866
2023-12-04 15:15:07
prion
prion
Cross site scripting
2023-12-04 15:15:00
alpinelinux
alpinelinux
CVE-2023-48866
2023-12-04 15:15:07