First published: Thu Nov 16 2023(Updated: )
H2O is vulnerable to stored XSS vulnerability which can lead to a Local File Include attack.
|Affected Software||Affected Version||How to fix|
The severity of CVE-2023-6013 is critical.
CVE-2023-6013 is a vulnerability in H2O that allows for stored XSS, leading to a Local File Include attack.
The H2O Local File Include vulnerability can be exploited through a stored XSS, allowing an attacker to include local files.
Yes, a fix for CVE-2023-6013 is available and should be applied as soon as possible.
You can find more information about CVE-2023-6013 at the following link: [https://huntr.com/bounties/9881569f-dc2a-437e-86b0-20d4b70ae7af](https://huntr.com/bounties/9881569f-dc2a-437e-86b0-20d4b70ae7af)