CVE-2023-40869

2023-09-1400:00:00

mitre

github.com

cross site scripting

remote code execution

moosocial software

AI Score

7.2

Confidence

High

SSVC

Exploitation

poc

Automatable

Technical Impact

partial

JSON

Cross Site Scripting vulnerability in mooSocial mooSocial Software 3.1.6 and 3.1.7 allows a remote attacker to execute arbitrary code via a crafted script to the edit_menu, copuon, and group_categorias functions.

References

github.com/MinoTauro2020/CVE-2023-40869