CVE-2023-43343
MEDIUMQuick CMS 6.7 - Stored Cross-Site Scripting via Pages Menu Files Description Parameter
Title source: llmExploitation Summary
EIP tracks 1 public exploit for CVE-2023-43343. PoCs published by sromanhu.
AI-analyzed exploit summary This repository provides a detailed technical analysis of CVE-2023-43343, a stored XSS vulnerability in Quick CMS v6.7. It includes a proof-of-concept payload and step-by-step instructions for exploitation, demonstrating how arbitrary JavaScript can be injected via the 'Description' field in the 'Pages - Files' menu.
Description
Cross-site scripting (XSS) vulnerability in opensolution Quick CMS v.6.7 allows a local attacker to execute arbitrary code via a crafted script to the Files - Description parameter in the Pages Menu component.
Exploits (1)
This repository provides a detailed technical analysis of CVE-2023-43343, a stored XSS vulnerability in Quick CMS v6.7. It includes a proof-of-concept payload and step-by-step instructions for exploitation, demonstrating how arbitrary JavaScript can be injected via the 'Description' field in the 'Pages - Files' menu.
References (2)
Scores
CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N