Security Advisory

CVE-2023-38758

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2023-08-08 00:00:00

Last updated 2024-10-10 18:53:47

Assigner mitre

State PUBLISHED

Description

Cross Site Scripting vulnerability in wger Project wger Workout Manager v.2.2.0a3 allows a remote attacker to gain privileges via the license_author field in the add-ingredient function in the templates/ingredients/view.html, models/ingredients.py, and views/ingredients.py components.

← Browse all CVEs View on cve.org ↗