2 matches found
CVE-2023-50072
CVE-2023-50072 refers to a Stored XSS in OpenKM 7.1.40 (dbb6e88) with Professional Extension. An authenticated user can upload a note on a file; when other users view the note, the payload executes in the browser. Public exploit details are present in connected sources (e.g., a PoC repository) bu...
Exploit for Cross-site Scripting in Openkm
CVE-2023-50072 A stored cross-site scripting XSS vulnerabil...