2 matches found
CVE-2023-41448
Cross Site Scripting vulnerability in phpkobo AjaxNewTicker v.1.0.5 allows a remote attacker to execute arbitrary code via a crafted payload to the ID parameter in the index.php component...
CVE-2023-41448
CVE-2023-41448 concerns phpkobo AjaxNewTicker v1.0.5. The vulnerability lies in the index.php component, where the ID parameter can be crafted to trigger a cross-site scripting (XSS) flaw. This XSS could allow a remote attacker to execute arbitrary code (as stated in the sources) by supplying a m...