A Cross-Site Scripting (XSS)... CVE-2023-48866

- AV AC AU C I A
发布: 2023-12-04
修订: 2023-12-07

A Cross-Site Scripting (XSS) vulnerability in the recipe preparation component within /api/objects/recipes and note component within /api/objects/shopping_lists/ of Grocy <= 4.0.3 allows attackers to obtain the victim's cookies.

0%

漏洞利用/PoC

暂无可用Exp或PoC

受影响的平台与产品

当前有1条受影响产品信息