exploitDog

GHSA-367q-hhvx-9x63

Опубликовано: 26 нояб. 2025

Источник: github

Github: Не прошло ревью

CVSS3: 6.1

Описание

A reflected cross-site scripted (XSS) vulnerability in OpenCode Systems USSD Gateway OC Release: 5 allows attackers to execute arbitrary JavaScript in the context of a user's browser via injecting a crafted payload.

A reflected cross-site scripted (XSS) vulnerability in OpenCode Systems USSD Gateway OC Release: 5 allows attackers to execute arbitrary JavaScript in the context of a user's browser via injecting a crafted payload.

Ссылки

EPSS

Процентиль: 16%

0.0005

Низкий

6.1 Medium

CVSS3

CVE ID

Дефекты

CWE-79

Связанные уязвимости

CVE-2025-65237

CVSS3: 6.1

nvd

2 месяца назад

A reflected cross-site scripted (XSS) vulnerability in OpenCode Systems USSD Gateway OC Release: 5 allows attackers to execute arbitrary JavaScript in the context of a user's browser via injecting a crafted payload.

EPSS

Процентиль: 16%

0.0005

Низкий

6.1 Medium

CVSS3

CVE ID

Дефекты

CWE-79