CVE-2023-48198
- Reference to the description:
- Description:
- A Cross-Site Scripting (XSS) vulnerability in the 'product description' component within '/api/stock/products' of Grocy version <= 4.0.3 allows attackers to obtain a victim's cookies.
- Last updated date:
- 11/28/2023
- Type:
- exploit
- Confidence:
- HIGH
- Date of publishing:
- 11/21/2023
- Reference url to background