CVE-2023-4170

See a problem?
Source
https://nvd.nist.gov/vuln/detail/CVE-2023-4170
Import Source
https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2023-4170.json
JSON Data
https://api.osv.dev/v1/vulns/CVE-2023-4170
Published
2023-08-05T19:15:18Z
Modified
2024-09-03T04:33:36.039488Z
Severity
  • 4.8 (Medium) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:C/C:L/I:L/A:N CVSS Calculator
Summary
[none]
Details

A vulnerability was found in DedeBIZ 6.2.10. It has been rated as problematic. Affected by this issue is some unknown functionality of the component Article Handler. The manipulation leads to cross site scripting. The attack may be launched remotely. The exploit has been disclosed to the public and may be used. VDB-236186 is the identifier assigned to this vulnerability. NOTE: The vendor was contacted early about this disclosure but did not respond in any way.

References

Affected packages

Git / github.com/dedebiz/dedev6

Affected ranges

Type
GIT
Repo
https://github.com/dedebiz/dedev6
Events
Introduced
0 Unknown introduced commit / All previous commits are affected
Last affected

Affected versions

6.*

6.0.0
6.0.1
6.0.2
6.0.3
6.1.0
6.1.1
6.1.2
6.1.6
6.1.7
6.1.8
6.1.9
6.2.10
6.2.5
6.2.6