2 matches found
CVE-2023-40618
A reflected cross-site scripting XSS vulnerability in OpenKnowledgeMaps Head Start versions 4, 5, 6, 7 as well as Visual Project Explorer 1.0, allows remote attackers to execute arbitrary JavaScript in the web browser of a user, by including a malicious payload into the 'service' parameter in...
CVE-2023-40618
CVE-2023-40618 is a reflected XSS affecting OpenKnowledgeMaps Head Start (versions 4–7) and Visual Project Explorer 1.0. The vulnerability arises from handling of the ‘service’ parameter in the headstart_snapshot.php endpoint, allowing remote attackers to inject JavaScript into a user session. Do...