CVE-2023-1154

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Pacsrapor allows Reflected XSS. This issue affects Pacsrapor: before 1.22.

medium 6.1 CVSS 3.1
Published: Mar 21, 2023
Modified: Jun 1, 2026
Vendor: Pacsrapor
Product: Pacsrapor

Description

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Pacsrapor allows Reflected XSS.

This issue affects Pacsrapor: before 1.22.

References

Related CVEs

CVE-2023-1153 critical · 9.8
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Pacsrapor allows SQL Injection, Command Line Execution through SQL Injection.