CVE-2023-43325

Published
View on NVD ↗
CVSS v3
6.1
MEDIUM
CVSS v2
N/A
Affected
1
PROJECT

Description

A reflected cross-site scripting (XSS) vulnerability in the data[redirect_url] parameter of mooSocial v3.1.8 allows attackers to steal user's session cookies and impersonate their account via a crafted URL.

ahrixia/CVE-2023-43325
ahrixia/CVE-2023-43325
mooSocial v3.1.8 is vulnerable to cross-site scripting on user login function.
GitHubGitHub