CVE-2023-23277

Severity CVSS v4.0:
Pending analysis
Type:
CWE-79 Cross-Site Scripting (XSS)
Publication date:
11/04/2023
Last modified:
11/02/2025

Description

Snippet-box 1.0.0 is vulnerable to Cross Site Scripting (XSS). Remote attackers can render arbitrary web script or HTML from the "Snippet code" form field.

Vulnerable products and versions

CPE From Up to
cpe:2.3:a:snippet_box_project:snippet_box:1.0.0:*:*:*:*:*:*:*