Cross-Site Scripting (XSS) Vulnerability in KodExplorer 4.51 Light App Creation Description Field

Cross-Site Scripting (XSS) Vulnerability in KodExplorer 4.51 Light App Creation Description Field

CVE-2023-37153 · MEDIUM Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N

KodExplorer 4.51 contains a Cross-Site Scripting (XSS) vulnerability in the Description box of the Light App creation feature. An attacker can exploit this vulnerability by injecting XSS syntax into the Description field.

Learn more about our Web Application Penetration Testing UK.