Vulnerability Details CVE-2023-48202
Cross-Site Scripting (XSS) vulnerability in Sunlight CMS 8.0.1 allows an authenticated low-privileged user to escalate privileges via a crafted SVG file in the File Manager component.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.001
EPSS Ranking 29.8%
CVSS Severity
CVSS v3 Score 5.4
References
Products affected by CVE-2023-48202
-
cpe:2.3:a:sunlight-cms:sunlight_cms:8.0.1