Lucene search
K

5 matches found

Nuclei
Nuclei
added yesterday78 views

WWBN AVideo 11.6 - Cross-Site Scripting

A reflected XSS vulnerability exists in the functiongetOpenGraph videoName functionality of WWBN AVideo 11.6 and dev master commit 3c6bb3ff, allowing arbitrary Javascript execution. id: CVE-2023-48728 info: name: WWBN AVideo 11.6 - Cross-Site Scripting author: ritikchaddha severity: medium...

9.6CVSS6.8AI score0.02268EPSS
Exploits1References2
VulnCheck KEV
VulnCheck KEV
added 2025/06/07 12:0 a.m.5 views

VulnCheck KEV: CVE-2023-48728

A cross-site scripting xss vulnerability exists in the functiongetOpenGraph videoName functionality of WWBN AVideo 11.6 and dev master commit 3c6bb3ff. A specially crafted HTTP request can lead to arbitrary Javascript execution. An attacker can get a user to visit a webpage to trigger this...

9.6CVSS5.8AI score0.02268EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/23 4:19 a.m.13 views

CVE-2023-48728

A cross-site scripting xss vulnerability exists in the functiongetOpenGraph videoName functionality of WWBN AVideo 11.6 and dev master commit 3c6bb3ff. A specially crafted HTTP request can lead to arbitrary Javascript execution. An attacker can get a user to visit a webpage to trigger this...

9.6CVSS6.3AI score0.02268EPSS
Exploits1
OSV
OSV
added 2024/01/10 3:48 p.m.17 views

CVE-2023-48728

A cross-site scripting xss vulnerability exists in the functiongetOpenGraph videoName functionality of WWBN AVideo 11.6 and dev master commit 3c6bb3ff. A specially crafted HTTP request can lead to arbitrary Javascript execution. An attacker can get a user to visit a webpage to trigger this...

9.6CVSS6.4AI score0.02268EPSS
Exploits1References4
CVE
CVE
added 2024/01/10 3:48 p.m.66 views

CVE-2023-48728

WWBN AVideo 11.6 (and dev master commit 3c6bb3ff) is affected by a reflected cross-site scripting (XSS) vulnerability in the function getOpenGraph videoName parameter. The issue arises from missing sanitization of the videoName input displayed on the OpenGraph page, enabling arbitrary JavaScript ...

9.6CVSS6.2AI score0.02268EPSS
Exploits1References2Affected Software1
Rows per page
Query Builder