Page 3 of 11 results (0.001 seconds)
CVSS: 4.8EPSS: 0%CPEs: 1EXPL: 1
CVE-2023-3837 – DedeBIZ sys_sql_query.php cross site scripting
https://notcve.org/view.php?id=CVE-2023-3837
A vulnerability classified as problematic has been found in DedeBIZ 6.2.10. Affected is an unknown function of the file /admin/sys_sql_query.php. The manipulation leads to cross site scripting. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used. • https://github.com/TXPH/CVE/blob/main/xss-report.pdf https://vuldb.com/?ctiid.235188 https://vuldb.com/?id.235188 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •