CVE-2023-45957

A stored cross-site scripting (XSS) vulnerability in the component admin/AdminRequestSqlController.php of thirty bees before 1.5.0 allows attackers to execute arbitrary web script or HTML via $e->getMessage() error mishandling. > MITRE Terms of Use apply – see LICENSE‑MITRE.txt