CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2023-48201

Cross Site Scripting (XSS) vulnerability in Sunlight CMS v.8.0.1, allows remote authenticated attackers to execute arbitrary code and escalate privileges via a crafted script to the Content text editor component.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.001

EPSS Ranking 32.5%

CVSS Severity

CVSS v3 Score 5.4

References

https://mechaneus.github.io/CVE-2023-48201.html
https://mechaneus.github.io/CVE-2023-48201.html

Products affected by CVE-2023-48201

Sunlight-Cms » Sunlight Cms » Version: 8.0.1

cpe:2.3:a:sunlight-cms:sunlight_cms:8.0.1

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2023-48201

Products

Pricing

Contact Us