ahrixia/CVE-2023-44812

Releases0

mooSocial v3.1.8 is vulnerable to cross-site scripting on Admin redirect function.

CVE History

CVE	Published	CVSS v3	CVSS v2
CVE-2023-44812 ↗	Oct 9, 2023Monday, 9 October 2023, 21:15	6.1 MEDIUM	—
Cross Site Scripting (XSS) vulnerability in mooSocial v.3.1.8 allows a remote attacker to execute arbitrary code via a crafted payload to the admin_redirect_url parameter of the user login function.