CVE-2023-46854 Information

Description

Proxmox proxmox-widget-toolkit before 4.0.9 as used in multiple Proxmox products allows XSS via the edit notes feature.

Reference

https://git.proxmox.com/?p=proxmox-widget-toolkit.git;a=commit;h=89699c6466cfd9cc3a81fbc926b62f122c33c23c https://git.proxmox.com/?p=proxmox-widget-toolkit.git;a=commit;h=1326f771b959e576d140da2249c8b5424da6c80d https://pve.proxmox.com/wiki/Package_Repositories#sysadmin_test_repo