Security Advisory

CVE-2023-45958

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2023-10-18 00:00:00

Last updated 2024-09-13 14:46:12

Assigner mitre

State PUBLISHED

Description

Thirty Bees Core v1.4.0 was discovered to contain a reflected cross-site scripting (XSS) vulnerability via the backup_pagination parameter at /controller/AdminController.php. This vulnerability allows attackers to execute arbitrary JavaScript in the web browser of a user via a crafted payload.

← Browse all CVEs View on cve.org ↗