3 matches found
CVE-2023-48255
The vulnerability allows an unauthenticated remote attacker to send malicious network requests containing arbitrary client-side script code and obtain its execution inside a victim’s session via a crafted URL, HTTP request, or simply by waiting for the victim to view the poisoned log...
CVE-2023-48255
CVE-2023-48255 describes an unauthenticated remote code execution risk where an attacker can force execution of arbitrary client-side script by sending crafted network requests or via poisoned logs/viewed content. The CVSS vectors in the initial entry suggest NETWORK access with LOW to MODERATE i...
CVE-2023-48255
The vulnerability allows an unauthenticated remote attacker to send malicious network requests containing arbitrary client-side script code and obtain its execution inside a victim’s session via a crafted URL, HTTP request, or simply by waiting for the victim to view the poisoned log...