CVE-2023-5026
CVE-2023-5026 concerns Tongda OA 11.10, where an XSS vulnerability exists in an unknown function of the file /general/ipanel/menu_code.php?MENU_TYPE=FAV. The argument OA_SUB_WINDOW can be manipulated to trigger cross-site scripting, and the exploit has been disclosed publicly, enabling remote pot...