4 matches found
CVE-2023-6778
Cross-site Scripting XSS - Stored in GitHub repository allegroai/clearml-server prior to 1.13.0...
CVE-2023-6778
creationtimestamp| type| source ---|---|--- 2023-12-22 17:19:32+00:00| seen| https://t.me/ctinow/158481 2024-01-12 10:06:46+00:00| seen| https://t.me/ctinow/167172...
CVE-2023-6778 Cross-site Scripting (XSS) - Stored in allegroai/clearml-server
Cross-site Scripting XSS - Stored in GitHub repository allegroai/clearml-server prior to 1.13.0...
CVE-2023-6778
CVE-2023-6778 affects ClearML Server (allegroai/clearml-server). It is a stored XSS vulnerability in versions prior to 1.13.0, enabling attackers to inject scripts via the affected web interface. The root cause is untrusted user input stored and rendered, leading to potential data exposure or ses...