2 matches found
CVE-2023-46058
Cross Site Scripting XSS vulnerability in Geeklog-Core geeklog v.2.2.2 allows a remote attacker to execute arbitrary code via a crafted payload to the grpdesc parameter of the admin/group.php component...
CVE-2023-46058
CVE-2023-46058 describes a Cross-Site Scripting (XSS) vulnerability in Geeklog-Core (geeklog v2.2.2). The issue resides in the public_html/admin/group.php component, where unsanitized input to the grp_desc parameter can be crafted to execute arbitrary code in the context of an affected site. Docu...