exploitDog

GHSA-27g2-x7r5-jm53

Опубликовано: 14 сент. 2023

Источник: github

Github: Не прошло ревью

CVSS3: 5.4

Описание

A Stored Cross-Site Scripting (XSS) vulnerability while editing the autoreply file page in Usermin 2.000 allows remote attackers to inject arbitrary web script or HTML by editing the forward file manually.

A Stored Cross-Site Scripting (XSS) vulnerability while editing the autoreply file page in Usermin 2.000 allows remote attackers to inject arbitrary web script or HTML by editing the forward file manually.

Ссылки

EPSS

Процентиль: 28%

0.00096

Низкий

5.4 Medium

CVSS3

CVE ID

Дефекты

CWE-79

Связанные уязвимости

CVE-2023-41159

CVSS3: 5.4

nvd

почти 2 года назад

A Stored Cross-Site Scripting (XSS) vulnerability while editing the autoreply file page in Usermin 2.000 allows remote attackers to inject arbitrary web script or HTML by editing the forward file manually.

EPSS

Процентиль: 28%

0.00096

Низкий

5.4 Medium

CVSS3

CVE ID

Дефекты

CWE-79