CVE-2023-4892
published 2023-09-25CVE-2023-4892: Teedy v1.11 has a vulnerability in its text editor that allows events to be executed in HTML tags that an attacker could manipulate. Thanks to this, it is…
PriorityP421medium4.6CVSS 3.1
AVNACLPRLUIRSUCLILAN
EPSS
0.39%
30.3th percentile
Teedy v1.11 has a vulnerability in its text editor that allows events
to be executed in HTML tags that an attacker could manipulate. Thanks
to this, it is possible to execute malicious JavaScript in the webapp.
Affected
2 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| sismics | teedy | — | — |
| teedy | teedy | — | — |
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
No detection rules found.
No public exploits indexed.
No writeups or analysis indexed.
2023-09-25
Published