exploitDog

GHSA-2279-4crg-c8c8

Опубликовано: 24 мая 2022

Источник: github

Github: Не прошло ревью

Описание

Monstra CMS 1.6 allows XSS via an uploaded SVG document to the admin/index.php?id=filesmanager&path=uploads/ URI. NOTE: this is a discontinued product.

Monstra CMS 1.6 allows XSS via an uploaded SVG document to the admin/index.php?id=filesmanager&path=uploads/ URI. NOTE: this is a discontinued product.

Ссылки

EPSS

Процентиль: 57%

0.00353

Низкий

CVE ID

Связанные уязвимости

CVE-2018-19599

CVSS3: 5.4

nvd

больше 5 лет назад

Monstra CMS 1.6 allows XSS via an uploaded SVG document to the admin/index.php?id=filesmanager&path=uploads/ URI. NOTE: this is a discontinued product.

EPSS

Процентиль: 57%

0.00353

Низкий

CVE ID