A Universal Cross Site Scripting (UXSS) vulnerability in ClassLink OneClick Extension through 10.8 allows remote attackers to inject JavaScript into any webpage. NOTE: this issue exists because of an incomplete fix for CVE-2022-48612.
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: mitre

Published: 2024-01-23T00:00:00

Updated: 2024-08-02T20:29:32.615Z

Reserved: 2023-10-15T00:00:00

Link: CVE-2023-45889

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Analyzed

Published: 2024-01-23T18:15:18.053

Modified: 2024-01-29T22:49:49.317

Link: CVE-2023-45889

cve-icon Redhat

No data.