Lucene search
K

4 matches found

AlpineLinux
AlpineLinux
added 2023/11/15 11:15 p.m.11 views

CVE-2023-48199

HTML Injection vulnerability in the 'manageApiKeys' component in Grocy = 4.0.3 allows attackers to inject arbitrary HTML content without script execution. This occurs when user-supplied data is not appropriately sanitized, enabling the injection of HTML tags through parameter values. The attacker...

4.3CVSS8AI score0.00502EPSS
Exploits1
Cvelist
Cvelist
added 2023/11/15 12:0 a.m.34 views

CVE-2023-48199

HTML Injection vulnerability in the 'manageApiKeys' component in Grocy = 4.0.3 allows attackers to inject arbitrary HTML content without script execution. This occurs when user-supplied data is not appropriately sanitized, enabling the injection of HTML tags through parameter values. The attacker...

8.1AI score0.00502EPSS
Exploits1References4
CVE
CVE
added 2023/11/15 12:0 a.m.68 views

CVE-2023-48199

CVE-2023-48199 describes an HTML Injection vulnerability in Grocy versions prior to 4.0.4, specifically in the manageApiKeys component. The issue arises when user-supplied data is not sanitized, allowing injection of HTML tags through parameter values and potentially altering the QR code detail p...

7.8CVSS7.8AI score0.00502EPSS
Exploits1References4Affected Software1
OSV
OSV
added 2023/11/15 12:0 a.m.30 views

CVE-2023-48199

HTML Injection vulnerability in the 'manageApiKeys' component in Grocy = 4.0.3 allows attackers to inject arbitrary HTML content without script execution. This occurs when user-supplied data is not appropriately sanitized, enabling the injection of HTML tags through parameter values. The attacker...

7.8CVSS7.4AI score0.00502EPSS
Exploits1References6
Rows per page
Query Builder