VYPR
Unrated severityNVD Advisory· Published Dec 2, 2023· Updated Aug 2, 2024

PHPEMS Content Section api.cls.php cross site scripting

CVE-2023-6472

Description

A vulnerability, which was classified as problematic, has been found in PHPEMS 7.0. This issue affects some unknown processing of the file app\content\cls\api.cls.php of the component Content Section Handler. The manipulation leads to cross site scripting. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used. The identifier VDB-246629 was assigned to this vulnerability.

Affected products

2
  • Phpems/Phpemsllm-fuzzy2 versions
    = 7.0+ 1 more
    • (no CPE)range: = 7.0
    • (no CPE)range: 7.0

Patches

Vulnerability mechanics

References

3

News mentions

0

No linked articles in our index yet.