A Cross-site scripting (XSS) vulnerability in /panel/configuration/financial/ of Subrion v4.2.1 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into several fields: 'Minimum deposit', 'Maximum deposit' and/or 'Maximum balance'.
Metrics
Affected Vendors & Products
References
Link | Providers |
---|---|
https://github.com/al3zx/xss_financial_subrion_4.2.1 |
History
No history.
MITRE
Status: PUBLISHED
Assigner: mitre
Published: 2023-09-27T00:00:00
Updated: 2024-08-02T19:52:11.886Z
Reserved: 2023-09-25T00:00:00
Link: CVE-2023-43830
Vulnrichment
No data.
NVD
Status : Analyzed
Published: 2023-09-27T15:19:34.710
Modified: 2023-09-28T15:44:36.313
Link: CVE-2023-43830
Redhat
No data.