5 matches found
CVE-2023-25811
Uptime Kuma is a self-hosted monitoring tool. In versions prior to 1.20.0 the Uptime Kuma name parameter allows a persistent XSS attack. Users are advised to upgrade. There are no known workarounds for this vulnerability...
CVE-2023-25811
creationtimestamp| type| source ---|---|--- 2023-02-22 00:46:59+00:00| seen| https://t.me/cibsecurity/58642...
CVE-2023-25811
CVE-2023-25811 describes a persistent cross-site scripting (XSS) vulnerability in Uptime Kuma before version 1.20.0, caused by the web UI field used for the application name. The untrusted value in the name parameter can be stored and later rendered, enabling a persistent XSS attack as noted in m...
CVE-2023-25811 Persistent Cross site scripting (XSS) in Uptime Kuma
Uptime Kuma is a self-hosted monitoring tool. In versions prior to 1.20.0 the Uptime Kuma name parameter allows a persistent XSS attack. Users are advised to upgrade. There are no known workarounds for this vulnerability...
CVE-2023-25811 Persistent Cross site scripting (XSS) in Uptime Kuma
Uptime Kuma is a self-hosted monitoring tool. In versions prior to 1.20.0 the Uptime Kuma name parameter allows a persistent XSS attack. Users are advised to upgrade. There are no known workarounds for this vulnerability...