exploitDog

GHSA-3365-754m-855p

Опубликовано: 17 мая 2022

Источник: github

Github: Не прошло ревью

CVSS3: 5.4

Описание

In BlackCat CMS 1.2, backend/settings/ajax_save_settings.php allows remote authenticated users to conduct XSS attacks via the Website header or Website footer field.

In BlackCat CMS 1.2, backend/settings/ajax_save_settings.php allows remote authenticated users to conduct XSS attacks via the Website header or Website footer field.

Ссылки

EPSS

Процентиль: 35%

0.0014

Низкий

5.4 Medium

CVSS3

CVE ID

Дефекты

CWE-79

Связанные уязвимости

CVE-2017-14049

CVSS3: 5.4

nvd

больше 8 лет назад

In BlackCat CMS 1.2, backend/settings/ajax_save_settings.php allows remote authenticated users to conduct XSS attacks via the Website header or Website footer field.

EPSS

Процентиль: 35%

0.0014

Низкий

5.4 Medium

CVSS3

CVE ID

Дефекты

CWE-79