3 matches found
CVE-2023-4189 Cross-site Scripting (XSS) - Reflected in instantsoft/icms2
Cross-site Scripting XSS - Reflected in GitHub repository instantsoft/icms2 prior to 2.16.1-git...
CVE-2023-4189 Cross-site Scripting (XSS) - Reflected in instantsoft/icms2
Cross-site Scripting XSS - Reflected in GitHub repository instantsoft/icms2 prior to 2.16.1-git...
CVE-2023-4189
CVE-2023-4189 is a reflected XSS in instantsoft/icms2 before version 2.16.1-git. The Red Hat, NVD, and other sources confirm that the vulnerability arises from reflecting unsanitized user input in the URL, enabling an attacker to inject script. The Huntr entry provides a concrete PoC path showing...