Описание
WebUI in qBittorrent before 3.3.11 did not escape many values, which could potentially lead to XSS.
Пакеты
| Пакет | Статус | Версия исправления | Релиз | Тип |
|---|---|---|---|---|
| qbittorrent | fixed | 3.3.7-3 | package | |
| qbittorrent | no-dsa | jessie | package |
Примечания
https://github.com/qbittorrent/qBittorrent/commit/6ca3e4f094da0a0017cb2d483ec1db6176bb0b16
Fixed upstream in 3.3.11
EPSS
Процентиль: 51%
0.00284
Низкий
Связанные уязвимости
CVSS3: 6.1
ubuntu
почти 9 лет назад
WebUI in qBittorrent before 3.3.11 did not escape many values, which could potentially lead to XSS.
CVSS3: 6.1
nvd
почти 9 лет назад
WebUI in qBittorrent before 3.3.11 did not escape many values, which could potentially lead to XSS.
CVSS3: 6.1
github
больше 3 лет назад
WebUI in qBittorrent before 3.3.11 did not escape many values, which could potentially lead to XSS.
EPSS
Процентиль: 51%
0.00284
Низкий