1 results (0.002 seconds)
CVSS: 6.4EPSS: 0%CPEs: 1EXPL: 0
CVSS: 6.4EPSS: 0%CPEs: 1EXPL: 0CVE-2023-26100
https://notcve.org/view.php?id=CVE-2023-26100
21 Apr 2023 — In Progress Flowmon before 12.2.0, an application endpoint failed to sanitize user-supplied input. A threat actor could leverage a reflected XSS vulnerability to execute arbitrary code within the context of a Flowmon user's web browser. • https://support.kemptechnologies.com/hc/en-us/articles/12736934205837 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •