CVE-2023-22427 Information

Description

Stored cross-site scripting vulnerability in Theme switching function of SHIRASAGI v1.16.2 and earlier versions allows a remote attacker with an administrative privilege to inject an arbitrary script.

Reference

https://www.ss-proj.org/support/938.html https://www.ss-proj.org/ https://github.com/shirasagi/shirasagi https://jvn.jp/en/jp/JVN18765463/