CVE-2023-25295

A Cross Site Scripting (XSS) vulnerability in evewa3ajax.php in GRUEN eVEWA3 Community 31 through 53 allows attackers to obtain escalated privileges via a crafted request to the login panel. > MITRE Terms of Use apply – see LICENSE‑MITRE.txt