PT-2023-28789 · Evolution · Evolution

Name of the Vulnerable Software and Affected Versions: evolution version 3.2.3 Description: A cross-site scripting XSS issue allows a local attacker to execute arbitrary code via a crafted payload injected into the cmsadmin, cmsadminemail, cmspassword, and cmspasswordconfim parameters. This enabl...