CVE-2023-2768

Name of the Vulnerable Software and Affected Versions Sucms version 1.0

Description A problematic issue has been found, affecting some unknown functionality of the file "admin ads.php?action=add". The manipulation of the intro argument leads to cross site scripting. The attack may be launched remotely.

Recommendations For Sucms version 1.0, as a temporary workaround, consider restricting access to the "admin ads.php?action=add" endpoint until a patch is available. Avoid using the intro argument in this endpoint to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.