CVE-2023-28800

Published: Jun 22, 2023
Updated: May 4, 2025
CVE: <a href="https://nvd.nist.gov/vuln/detail/CVE-2023-28800" target="_blank" rel="noopener"> CVE-2023-28800
Severity: Medium
Exploit:

When using local accounts for administration, the redirect url parameter was not encoded correctly, allowing for an XSS attack providing admin login.

CVSS v3:

CWEs:

OWASP TOP 10: