An attacker with access to the web application that has the vulnerable software could introduce arbitrary JavaScript by injecting a cross-site scripting payload into the "autorefresh" parameter.
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: icscert

Published: 2024-02-06T21:44:24.769Z

Updated: 2024-08-02T20:14:19.991Z

Reserved: 2023-10-12T20:21:27.716Z

Link: CVE-2023-45222

cve-icon Vulnrichment

Updated: 2024-08-02T20:14:19.991Z

cve-icon NVD

Status : Analyzed

Published: 2024-02-06T22:16:13.873

Modified: 2024-02-12T16:45:27.167

Link: CVE-2023-45222

cve-icon Redhat

No data.