Cross-Site Scripting (XSS) Vulnerability in Pachno 1.0.6

Cross-Site Scripting (XSS) Vulnerability in Pachno 1.0.6

CVE-2023-47437 · MEDIUM Severity

CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N

A vulnerability has been identified in Pachno 1.0.6 allowing an authenticated attacker to execute a cross-site scripting (XSS) attack. The vulnerability exists due to inadequate input validation in the Project Description and comments, which enables an attacker to inject malicious java script.

Learn more about our Web Application Penetration Testing UK.