2 matches found
CVE-2023-1572 DataGear Plugin cross site scripting
A vulnerability has been found in DataGear up to 1.11.1 and classified as problematic. This vulnerability affects unknown code of the component Plugin Handler. The manipulation leads to cross site scripting. It is possible to launch the attack on the local host. The exploit has been disclosed to...
CVE-2023-1572
DataGear up to version 1.11.1 is affected by a cross-site scripting (XSS) vulnerability in the Plugin Handler component. The issue allows an attacker to craft payloads that can be triggered from the local host, with the exploit disclosed publicly. Remediation observed in the sources is to upgrade...