CVE-2023-5024
LOWPlanno planning_biblio 23.04.04 - Cross-Site Scripting in Comment Handler
Title source: llmExploitation Summary
EIP tracks 1 public exploit for CVE-2023-5024. PoCs published by PH03N1XSP.
AI-analyzed exploit summary This repository provides a detailed technical description of a reflected XSS vulnerability (CVE-2023-5024) in Planno version <= 23.04.04, including two attack paths and payload examples. It does not contain functional exploit code but offers clear steps to reproduce the issue.
Description
A vulnerability was found in Planno 23.04.04. It has been classified as problematic. This affects an unknown part of the component Comment Handler. The manipulation leads to cross site scripting. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used. The identifier VDB-239865 was assigned to this vulnerability.
Exploits (1)
This repository provides a detailed technical description of a reflected XSS vulnerability (CVE-2023-5024) in Planno version <= 23.04.04, including two attack paths and payload examples. It does not contain functional exploit code but offers clear steps to reproduce the issue.
References (4)
Scores
CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:N/I:L/A:N