Source |
CVE Liste |
Identifiant |
8395406 |
Date de publication |
2023-10-14 04:15:10 (vue: 2023-10-14 06:08:56) |
Titre |
CVE-2023-30148 |
Texte |
Vulnérabilités de script de script de site transversal multiples (XSS) dans OPART OPARTMultiHtmlblock avant la version 2.0.12 et OPART MultiHtmlBlock * version 1.0.0, permet aux utilisateurs authentifiés à distance d'injecter un script Web arbitraire ou HTML via le Body_Text ou Body_Text_Tex.et /sourcefiles/blockhtml.php.
Multiple Stored Cross Site Scripting (XSS) vulnerabilities in Opart opartmultihtmlblock before version 2.0.12 and Opart multihtmlblock* version 1.0.0, allows remote authenticated users to inject arbitrary web script or HTML via the body_text or body_text_rude field in /sourcefiles/BlockhtmlClass.php and /sourcefiles/blockhtml.php. |
Envoyé |
Oui |
Condensat |
/sourcefiles/blockhtml /sourcefiles/blockhtmlclass 2023 30148 allows arbitrary authenticated before body cross cve field html inject multihtmlblock* multiple opart opartmultihtmlblock php remote rude script scripting site stored text users version vulnerabilities web xss |
Tags |
Vulnerability
|
Stories |
|
Notes |
|
Move |
|