exploitDog

GHSA-28fw-fj88-q3vr

Опубликовано: 02 мая 2022

Источник: github

Github: Не прошло ревью

Описание

Multiple cross-site scripting (XSS) vulnerabilities in comments.php in Simplog 0.9.3.2, and possibly earlier, allow remote attackers to inject arbitrary web script or HTML via the (1) cname (Name) or (2) email parameters.

Multiple cross-site scripting (XSS) vulnerabilities in comments.php in Simplog 0.9.3.2, and possibly earlier, allow remote attackers to inject arbitrary web script or HTML via the (1) cname (Name) or (2) email parameters.

Ссылки

EPSS

Процентиль: 83%

0.02083

Низкий

CVE ID

Дефекты

CWE-79

Связанные уязвимости

CVE-2009-4093

nvd

больше 15 лет назад

Multiple cross-site scripting (XSS) vulnerabilities in comments.php in Simplog 0.9.3.2, and possibly earlier, allow remote attackers to inject arbitrary web script or HTML via the (1) cname (Name) or (2) email parameters.

EPSS

Процентиль: 83%

0.02083

Низкий

CVE ID

Дефекты

CWE-79