4 matches found
CVE-2023-30124
LavaLite v9.0.0 is vulnerable to Cross Site Scripting XSS...
CVE-2023-30124
LavaLite v9.0.0 is vulnerable to Cross Site Scripting XSS...
CVE-2023-30124
LavaLite v9.0.0 is vulnerable to Cross Site Scripting (XSS) due to lack of proper filtering and escaping of user-provided data in the account name, enabling execution of arbitrary scripts in the browser. No official fix/version is provided in the supplied documents; CVSS v3.1 base score 5.4 (Medi...
CVE-2023-30124
LavaLite v9.0.0 is vulnerable to Cross Site Scripting XSS...