CVE-2023-4592

CVSS V2 None CVSS V3 None
Description
A Cross-Site Scripting vulnerability has been detected in WPN-XM Serverstack affecting version 0.8.6. This vulnerability could allow a remote attacker to send a specially crafted JavaScript payload through the /tools/webinterface/index.php parameter and retrieve the cookie session details of an authenticated user, resulting in a session hijacking.
Overview
  • CVE ID
  • CVE-2023-4592
  • Assigner
  • INCIBE
  • Vulnerability Status
  • PUBLISHED
  • Published Version
  • 2023-11-03T11:04:22.389Z
  • Last Modified Date
  • 2023-11-03T11:04:22.389Z
History
Created Old Value New Value Data Type Notes
2024-06-24 19:25:20 Added to TrackCVE