Vulnerability Details CVE-2023-3783
A vulnerability was found in Webile 1.0.1. It has been classified as problematic. Affected is an unknown function of the component HTTP POST Request Handler. The manipulation of the argument new_file_name/c leads to cross site scripting. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used. VDB-235050 is the identifier assigned to this vulnerability.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.001
EPSS Ranking 24.9%
CVSS Severity
CVSS v3 Score 3.5
CVSS v2 Score 4.0
References
- https://seclists.org/fulldisclosure/2023/Jul/38
- https://vuldb.com/?ctiid.235050
- https://vuldb.com/?id.235050
- https://www.vulnerability-lab.com/get_content.php?id=2321
- https://seclists.org/fulldisclosure/2023/Jul/38
- https://vuldb.com/?ctiid.235050
- https://vuldb.com/?id.235050
- https://www.vulnerability-lab.com/get_content.php?id=2321
Products affected by CVE-2023-3783
-
cpe:2.3:a:webile_wifi_pc_file_transfer_project:webile_wifi_pc_file_transfer:1.0.1