Page 2 of 11 results (0.004 seconds)
CVSS: 4.8EPSS: 0%CPEs: 1EXPL: 1
CVSS: 4.8EPSS: 0%CPEs: 1EXPL: 1CVE-2023-3837 – DedeBIZ sys_sql_query.php cross site scripting
https://notcve.org/view.php?id=CVE-2023-3837
22 Jul 2023 — A vulnerability classified as problematic has been found in DedeBIZ 6.2.10. Affected is an unknown function of the file /admin/sys_sql_query.php. The manipulation leads to cross site scripting. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used. • https://github.com/TXPH/CVE/blob/main/xss-report.pdf • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •