3 matches found
CVE-2023-2862
A vulnerability, which was classified as problematic, was found in SiteServer CMS up to 7.2.1. Affected is an unknown function of the file /api/stl/actions/search. The manipulation of the argument ajaxDivId leads to cross site scripting. It is possible to launch the attack remotely. The exploit h...
CVE-2023-2862
SiteServer CMS up to version 7.2.1 contains a cross-site scripting vulnerability in the /api/stl/actions/search endpoint. The issue stems from manipulating the ajaxDivId parameter in an unknown function, allowing remote exploitation. Public disclosure of exploits is indicated, and a patch is reco...
CVE-2023-2862 SiteServer CMS search cross site scripting
A vulnerability, which was classified as problematic, was found in SiteServer CMS up to 7.2.1. Affected is an unknown function of the file /api/stl/actions/search. The manipulation of the argument ajaxDivId leads to cross site scripting. It is possible to launch the attack remotely. The exploit h...