CVE-2023-26912 Information

Description

Cross site scripting (XSS) vulnerability in xenv S-mall-ssm thru commit 3d9e77f7d80289a30f67aaba1ae73e375d33ef71 on Feb 17 2020 allows local attackers to execute arbitrary code via the evaluate button.

Reference

https://github.com/xenv/S-mall-ssm/issues/37