CVE-2023-47380
unknown
CVSS v3
—
CVSS v2
—
VIR risk
—
Description
Cross-site Scripting in Admidio
Predictions
Exploit likelihood
30%
Patch ETA
—
Heuristic predictions, AS-IS, for prioritization only.
Mitigations
No vendor mitigations ingested yet for this CVE. The mitigation-content worker queues fetches as references arrive — check back in a few minutes, or see the references list below.
Package impact
| Ecosystem | Package | Vulnerable | Fixed |
|---|---|---|---|
| Packagist | admidio/admidio | <4.2.13 | 4.2.13 |
References
- https://nvd.nist.gov/vuln/detail/CVE-2023-47380
- https://github.com/Admidio/admidio
- https://github.com/Admidio/admidio/releases/tag/v4.2.13
- https://www.admidio.org/intern/adm_program/modules/announcements/announcements.php?ann_uuid=714ead2b-1718-4251-a9a3-f1b0df12d60e&headline=Blog
- https://www.getastra.com/blog/security-audit/reflected-xss-vulnerability-in-admidio
Verify integrity in audit chain (admin only). AS-IS.