CVE-2023-6646: linkding cross site scripting
First published: Sat Dec 09 2023(Updated: )
A vulnerability classified as problematic has been found in linkding 1.23.0. Affected is an unknown function. The manipulation of the argument q leads to cross site scripting. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used. Upgrading to version 1.23.1 is able to address this issue. It is recommended to upgrade the affected component. VDB-247338 is the identifier assigned to this vulnerability. NOTE: The vendor was contacted early, responded in a very professional manner and immediately released a fixed version of the affected product.
Credit: cna@vuldb.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| =1.23.0 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the severity of CVE-2023-6646?
CVE-2023-6646 is classified as problematic due to its potential for cross-site scripting attacks.
How do I fix CVE-2023-6646?
To fix CVE-2023-6646, users should upgrade to a patched version of linkding that addresses the vulnerability.
Who is affected by CVE-2023-6646?
CVE-2023-6646 affects users of linkding version 1.23.0.
What type of vulnerability is CVE-2023-6646?
CVE-2023-6646 is a cross-site scripting (XSS) vulnerability.
Can CVE-2023-6646 be exploited remotely?
Yes, CVE-2023-6646 can be exploited remotely by attackers.
- agent/type
- agent/references
- agent/first-publish-date
- agent/title
- agent/weakness
- agent/author
- agent/severity
- agent/description
- collector/epss-latest
- source/FIRST
- agent/epss
- agent/softwarecombine
- agent/event
- collector/nvd-api
- source/NVD
- agent/software-canonical-lookup
- collector/mitre-cve
- source/MITRE
- agent/last-modified-date
- agent/tags
- agent/source
- vendor/sissbruecker
- canonical/sissbruecker linkding
- version/sissbruecker linkding/1.23.0