CVE-2019-25011

Опубликовано: 31 дек. 2020

Источник: debian

EPSS Низкий

Описание

NetBox through 2.6.2 allows an Authenticated User to conduct an XSS attack against an admin via a GFM-rendered field, as demonstrated by /dcim/sites/add/ comments.

Пакеты

Пакет	Статус	Версия исправления	Релиз	Тип
netbox	itp			package

EPSS

Процентиль: 67%

0.00533

Низкий

Связанные уязвимости

CVE-2019-25011

CVSS3: 5.4

nvd

около 5 лет назад

NetBox through 2.6.2 allows an Authenticated User to conduct an XSS attack against an admin via a GFM-rendered field, as demonstrated by /dcim/sites/add/ comments.

GHSA-mpw2-6pxv-5r2w

CVSS3: 5.4

github

больше 3 лет назад

NetBox through 2.6.2 allows an Authenticated User to conduct an XSS attack against an admin via a GFM-rendered field, as demonstrated by /dcim/sites/add/ comments.

EPSS

Процентиль: 67%

0.00533

Низкий