Lucene search
K

7 matches found

RedhatCVE
RedhatCVE
added 2025/12/18 11:36 p.m.6 views

CVE-2023-53904

Xenforo 2.2.13 contains a stored cross-site scripting vulnerability that allows authenticated administrators to inject malicious scripts through the smilie category title parameter. Attackers can create a smilie category with a malicious script that will execute when the admin panel is loaded,...

5.1CVSS6.1AI score0.00221EPSS
Exploits0References1
EUVD
EUVD
added 2025/12/18 12:34 a.m.6 views

EUVD-2023-60226

Xenforo 2.2.13 contains a stored cross-site scripting vulnerability that allows authenticated administrators to inject malicious scripts through the smilie category title parameter. Attackers can create a smilie category with a malicious script that will execute when the admin panel is loaded,...

5.1CVSS5.6AI score0.00221EPSS
Exploits0References4
NVD
NVD
added 2025/12/17 11:15 p.m.4 views

CVE-2023-53904

Xenforo 2.2.13 contains a stored cross-site scripting vulnerability that allows authenticated administrators to inject malicious scripts through the smilie category title parameter. Attackers can create a smilie category with a malicious script that will execute when the admin panel is loaded,...

5.1CVSS0.00221EPSS
Exploits0References3
CVE
CVE
added 2025/12/17 10:44 p.m.10 views

CVE-2023-53904

CVE-2023-53904 affects XenForo 2.2.13: authenticated administrators can trigger a stored XSS via the smilie category title parameter, with scripts executing when the admin panel loads. Public detail confirms the issue, its stored nature, and that the vulnerability is exploitable in the admin cont...

5.1CVSS5.7AI score0.00221EPSS
Exploits0References3
Cvelist
Cvelist
added 2025/12/17 10:44 p.m.19 views

CVE-2023-53904 Xenforo 2.2.13 Authenticated Stored Cross-Site Scripting via Smilie Categories

Xenforo 2.2.13 contains a stored cross-site scripting vulnerability that allows authenticated administrators to inject malicious scripts through the smilie category title parameter. Attackers can create a smilie category with a malicious script that will execute when the admin panel is loaded,...

5.1CVSS0.00221EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2025/12/17 10:44 p.m.4 views

CVE-2023-53904 Xenforo 2.2.13 Authenticated Stored Cross-Site Scripting via Smilie Categories

Xenforo 2.2.13 contains a stored cross-site scripting vulnerability that allows authenticated administrators to inject malicious scripts through the smilie category title parameter. Attackers can create a smilie category with a malicious script that will execute when the admin panel is loaded,...

5.1CVSS5.7AI score0.00221EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2025/12/17 12:0 a.m.9 views

PT-2025-51942

Name of the Vulnerable Software and Affected Versions Xenforo version 2.2.13 Description The software contains a stored cross-site scripting issue. Authenticated administrators can inject malicious scripts through the smilie category title parameter. Creating a smilie category with a malicious...

5.1CVSS6.1AI score0.00221EPSS
Exploits0References5
Rows per page
Query Builder