Stored cross-site scripting vulnerability in Theme switching function of SHIRASAGI v1.16.2 and earlier versions allows a remote attacker with an administrative privilege to inject an arbitrary script.
References
Link | Resource |
---|---|
https://github.com/shirasagi/shirasagi | Product |
https://jvn.jp/en/jp/JVN18765463/ | Third Party Advisory |
https://www.ss-proj.org/ | Product |
https://www.ss-proj.org/support/938.html | Exploit Vendor Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: jpcert
Published: 2023-02-24T00:00:00
Updated: 2023-02-24T00:00:00
Reserved: 2022-12-28T00:00:00
Link: CVE-2023-22427
JSON object: View
NVD Information
Status : Analyzed
Published: 2023-02-24T06:15:11.503
Modified: 2023-03-02T17:35:10.170
Link: CVE-2023-22427
JSON object: View
Redhat Information
No data.
CWE