CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2023-41447

Cross Site Scripting vulnerability in phpkobo AjaxNewTicker v.1.0.5 allows a remote attacker to execute arbitrary code via a crafted payload to the subcmd parameter in the index.php component.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.007

EPSS Ranking 70.2%

CVSS Severity

CVSS v3 Score 6.1

References

http://ajaxnewsticker.com
http://phpkobo.com
https://gist.github.com/RNPG/56b9fe4dcc3a248d4288bde5ffb3a5b3
http://ajaxnewsticker.com
http://phpkobo.com
https://gist.github.com/RNPG/56b9fe4dcc3a248d4288bde5ffb3a5b3

Products affected by CVE-2023-41447

Phpkobo » Ajaxnewsticker » Version: 1.0.5

cpe:2.3:a:phpkobo:ajaxnewsticker:1.0.5

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2023-41447

Products

Pricing

Contact Us