CVE-2023-54343 – QWE DL 2.0.1 Persistent XSS Vulnerability via Path Parameter

CVE ID : CVE-2023-54343

Published : Feb. 1, 2026, 1:15 p.m. | 1 hour, 59 minutes ago

Description : QWE DL 2.0.1 mobile web application contains a persistent input validation vulnerability allowing remote attackers to inject malicious script code through path parameter manipulation. Attackers can exploit the vulnerability to execute persistent cross-site scripting attacks, potentially leading to session hijacking and application module manipulation.

Severity: 6.4 | MEDIUM

Visit the link for more details, such as CVSS details, affected products, timeline, and more… 

نوشته های مشابه

CVE-2020-37064 – EPSON EasyMP Network Projection 2.81 – ‘EMP_NSWLSV’ Unquoted Service Path

CVE-2020-37063 – TFTP Turbo 4.6.1273 – ‘TFTP Turbo 4’ Unquoted Service Path

CVE-2020-37062 – DHCP Turbo 4.6.1298- ‘DHCP Turbo 4’ Unquoted Service Path

CVE-2020-37061 – BOOTP Turbo 2.0.1214 – ‘BOOTP Turbo’ Unquoted Service Path