CVE-2021-41432

Опубликовано: 23 июн. 2022

Источник: debian

EPSS Низкий

Описание

A stored cross-site scripting (XSS) vulnerability exists in FlatPress 1.2.1 that allows for arbitrary execution of JavaScript commands through blog content.

Пакеты

Пакет	Статус	Версия исправления	Релиз	Тип
flatpress	itp			package

EPSS

Процентиль: 90%

0.05677

Низкий

Связанные уязвимости

CVE-2021-41432

CVSS3: 5.4

nvd

больше 3 лет назад

A stored cross-site scripting (XSS) vulnerability exists in FlatPress 1.2.1 that allows for arbitrary execution of JavaScript commands through blog content.

GHSA-j552-6vv5-6jv4

CVSS3: 5.4

github

больше 3 лет назад

A stored cross-site scripting (XSS) vulnerability exists in FlatPress 1.2.1 that allows for arbitrary execution of JavaScript commands through blog content.

EPSS

Процентиль: 90%

0.05677

Низкий