2 matches found
CVE-2023-4592 Improper Neutralization of Input During Web Page Generation in WPN-XM Serverstack
A Cross-Site Scripting vulnerability has been detected in WPN-XM Serverstack affecting version 0.8.6. This vulnerability could allow a remote attacker to send a specially crafted JavaScript payload through the /tools/webinterface/index.php parameter and retrieve the cookie session details of an...
CVE-2023-4592
CVE-2023-4592 concerns WPN-XM Serverstack 0.8.6. The vulnerability is a Cross-Site Scripting flaw allowing a remote attacker to send a crafted JavaScript payload via the "/tools/webinterface/index.php" parameter to access an authenticated user’s cookie/session information, enabling session hijack...