CVE-2023-4382
tdevs Hyip Rio 2.1 contains a cross-site scripting vulnerability in the Profile Settings /user/settings, where manipulation of the avatar parameter enables stored XSS. Multiple sources (NVD/NVD mirrors, Exploit-DB, PacketStorm, PRION/Vuln enrichment) document remote exploitation via attacking the...