CVE-2023-26692

MEDIUM

ZCBS/ZPBS/ZBBS 4.14k - XSS

Title source: llm

Description

ZCBS Zijper Collectie Beheer Systeem (ZCBS), Zijper Publication Management System (ZPBS), and Zijper Image Bank Management System (ZBBS) 4.14k is vulnerable to Cross Site Scripting (XSS).

Exploits (3)

exploitdb WORKING POC

by Abdulaziz Saad · textwebappscgi

https://www.exploit-db.com/exploits/51347

View Code ZIP pw:eip

nomisec WORKING POC 1 stars

by bigzooooz · poc

https://github.com/bigzooooz/CVE-2023-26692

View Code ZIP pw:eip

inthewild

poc

https://github.com/bigzooooz/cve-2023-26692#readme

View on inthewild

References (2)

[Exploit, Third Party Advisory] http://packetstormsecurity.com/files/171787/ZCBS-ZBBS-ZPBS-4.14k-Cross-Site-Scripting.html

[Exploit, Third Party Advisory] https://github.com/bigzooooz/CVE-2023-26692#readme

Scores

CVSS v3 6.1

EPSS 0.0222

EPSS Percentile 84.6%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N

Details

CWE

CWE-79

Status published

Products (3)

zcbs/zbbs

zcbs/zcbs

zcbs/zpbs

Published Mar 30, 2023

Tracked Since Feb 18, 2026