GHSA-27rv-vgm8-cv35

Опубликовано: 02 фев. 2024

Источник: github

Github: Не прошло ревью

CVSS3: 5.5

Описание

A cross-site scripting (XSS) vulnerability has been reported to affect Photo Station. If exploited, the vulnerability could allow authenticated users to inject malicious code via a network.

We have already fixed the vulnerability in the following version: Photo Station 6.4.2 ( 2023/12/15 ) and later

A cross-site scripting (XSS) vulnerability has been reported to affect Photo Station. If exploited, the vulnerability could allow authenticated users to inject malicious code via a network.

We have already fixed the vulnerability in the following version: Photo Station 6.4.2 ( 2023/12/15 ) and later

Ссылки

EPSS

Процентиль: 29%

0.00104

Низкий

5.5 Medium

CVSS3

CVE ID

CVE-2023-47561

Дефекты

CWE-79

Связанные уязвимости

CVE-2023-47561

CVSS3: 5.5

nvd

больше 1 года назад

A cross-site scripting (XSS) vulnerability has been reported to affect Photo Station. If exploited, the vulnerability could allow authenticated users to inject malicious code via a network. We have already fixed the vulnerability in the following version: Photo Station 6.4.2 ( 2023/12/15 ) and later

BDU:2024-01292

CVSS3: 5.5

fstec

больше 1 года назад

Уязвимость приложения для хранения фотографий Photo Station, связанная с непринятием мер по защите структуры веб-страницы, позволяющая нарушителю выполнить произвольный код

EPSS

Процентиль: 29%

0.00104

Низкий

5.5 Medium

CVSS3

CVE ID

CVE-2023-47561

Дефекты

CWE-79