A stored cross-site scripting (XSS) vulnerability in /settings/index.php of Black Cat CMS 1.4.1 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Website header parameter.
References
Link | Resource |
---|---|
https://github.com/Gi0rgi0R/xss_frontend_settings_blackcat_cms_1.4.1 | Exploit Product Third Party Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: mitre
Published: 2023-09-26T00:00:00
Updated: 2023-09-26T20:50:13.254445
Reserved: 2023-09-25T00:00:00
Link: CVE-2023-44042
JSON object: View
NVD Information
Status : Analyzed
Published: 2023-09-27T15:19:35.507
Modified: 2023-09-28T15:48:44.617
Link: CVE-2023-44042
JSON object: View
Redhat Information
No data.
CWE