28Ara
CVE-2023-7149 | code-projects QR Code Generator 1.0 download.php file cross site scripting
A vulnerability was found in code-projects QR Code Generator 1.0. It has been classified as problematic. This affects an unknown part of the file /download.php?file=author.png. The manipulation of the argument file with the input"><iMg src=N onerror=alert(document.domain)> leads to cross site scripting.
This vulnerability is uniquely identified as CVE-2023-7149. It is possible to initiate the attack remotely. Furthermore, there is an exploit available.
