3 matches found
CVE-2023-48940
A stored cross-site scripting XSS vulnerability in /admin.php of DaiCuo v2.5.15 allows attackers to execute arbitrary web scripts or HTML via a crafted payload...
CVE-2023-48940
A stored cross-site scripting XSS vulnerability in /admin.php of DaiCuo v2.5.15 allows attackers to execute arbitrary web scripts or HTML via a crafted payload...
CVE-2023-48940
DaiCuo v2.5.15 contains a stored XSS in /admin.php. The vulnerability allows an attacker to execute arbitrary web scripts or HTML via a crafted payload. CVSS~3.1 base score 5.4 (NETWORK, LOW attack complexity, user interaction required). Evidence is limited to the CVE description and associated r...