1 results (0.001 seconds)
CVSS: 6.1EPSS: 0%CPEs: 1EXPL: 0
CVSS: 6.1EPSS: 0%CPEs: 1EXPL: 0CVE-2023-46854
https://notcve.org/view.php?id=CVE-2023-46854
Proxmox proxmox-widget-toolkit before 4.0.9, as used in multiple Proxmox products, allows XSS via the edit notes feature. Proxmox proxmox-widget-toolkit anterior a 4.0.9, como se usa en múltiples productos Proxmox, permite XSS a través de la función de edición de notas. • https://git.proxmox.com/?p=proxmox-widget-toolkit.git%3Ba=commit%3Bh=1326f771b959e576d140da2249c8b5424da6c80d https://git.proxmox.com/?p=proxmox-widget-toolkit.git%3Ba=commit%3Bh=89699c6466cfd9cc3a81fbc926b62f122c33c23c https://pve.proxmox.com/wiki/Package_Repositories#sysadmin_test_repo • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •