exploitDog

GHSA-2h64-rqxh-72wj

Опубликовано: 03 апр. 2024

Источник: github

Github: Не прошло ревью

CVSS3: 6.1

Описание

Cross Site Scripting (XSS) vulnerability in emlog version Pro 2.3, allow remote attackers to execute arbitrary code via a crafted payload to the bottom of the homepage in footer_info parameter.

Cross Site Scripting (XSS) vulnerability in emlog version Pro 2.3, allow remote attackers to execute arbitrary code via a crafted payload to the bottom of the homepage in footer_info parameter.

Ссылки

EPSS

Процентиль: 68%

0.00561

Низкий

6.1 Medium

CVSS3

CVE ID

Дефекты

CWE-79

CWE-94

Связанные уязвимости

CVE-2024-31013

CVSS3: 6.1

nvd

почти 2 года назад

Cross Site Scripting (XSS) vulnerability in emlog version Pro 2.3, allow remote attackers to execute arbitrary code via a crafted payload to the bottom of the homepage in footer_info parameter.

EPSS

Процентиль: 68%

0.00561

Низкий

6.1 Medium

CVSS3

CVE ID

Дефекты

CWE-79

CWE-94