exploitDog

GHSA-2h3w-869c-mmjh

Опубликовано: 14 мая 2022

Источник: github

Github: Не прошло ревью

CVSS3: 5.4

Описание

SZ NetChat before 7.9 has XSS in the MyName input field of the Options module. Attackers are able to inject commands to compromise the enabled HTTP server web frontend.

SZ NetChat before 7.9 has XSS in the MyName input field of the Options module. Attackers are able to inject commands to compromise the enabled HTTP server web frontend.

Ссылки

EPSS

Процентиль: 43%

0.00206

Низкий

5.4 Medium

CVSS3

CVE ID

Дефекты

CWE-79

Связанные уязвимости

CVE-2018-20370

CVSS3: 5.4

nvd

около 7 лет назад

SZ NetChat before 7.9 has XSS in the MyName input field of the Options module. Attackers are able to inject commands to compromise the enabled HTTP server web frontend.

EPSS

Процентиль: 43%

0.00206

Низкий

5.4 Medium

CVSS3

CVE ID

Дефекты

CWE-79