2 matches found
CVE-2023-5378
CVE-2023-5378 affects MegaBIP up to version 4.36.2 and all versions of SmodBIP ( MegaBIP 5.08 is not vulnerable ). The vulnerability is an improper input validation that enables stored XSS. Affected components: MegaBIP (input handling that leads to stored XSS) and SmodBIP (all versions). Exploita...
CVE-2023-4837
CVE-2023-4837 describes a Cross-Site Request Forgery vulnerability in SmodBIP. The issue affects all versions of SmodBIP and is not being fixed, as the project is no longer maintained. An attacker could induce logged-in users to perform unintended actions, including the creation of additional adm...