CVE-2023-40877 : DedeCMS up to and including 5.7.110 was discovered to contain a cross-site scrip

DedeCMS up to and including 5.7.110 was discovered to contain a cross-site scripting (XSS) vulnerability at /dede/freelist_edit.php via the title parameter.

Published 2023-08-24 15:15:08

Updated 2023-08-24 15:15:08

Source MITRE

View at NVD, CVE.org

Vulnerability category: Cross site scripting (XSS)

Products affected by CVE-2023-40877

We don't have affected product information for this CVE yet

Exploit prediction scoring system (EPSS) score for CVE-2023-40877

EPSS FAQ

0.07%

Probability of exploitation activity in the next 30 days EPSS Score History

~ 23 %

Percentile, the proportion of vulnerabilities that are scored at or less

References for CVE-2023-40877

https://github.com/DiliLearngent/BugReport/blob/main/php/DedeCMS/xss4.md

BugReport/php/DedeCMS/xss4.md at main · DiliLearngent/BugReport · GitHub

Jump to

Vulnerability Details : CVE-2023-40877

Products affected by CVE-2023-40877

Exploit prediction scoring system (EPSS) score for CVE-2023-40877

References for CVE-2023-40877