Arbitrary Code Execution via Cross Site Scripting (XSS) in ProjeQtOr 11.0.2

Arbitrary Code Execution via Cross Site Scripting (XSS) in ProjeQtOr 11.0.2

CVE-2023-49034 · Severity

Cross Site Scripting (XSS) vulnerability in ProjeQtOr 11.0.2 allows a remote attacker to execute arbitrary code via a crafted script to thecheckvalidHtmlText function in the ack.php and security.php files.

Learn more about our Web Application Penetration Testing UK.