exploitDog

GHSA-39wm-3xfh-4h5j

Опубликовано: 24 мая 2022

Источник: github

Github: Не прошло ревью

Описание

Cross Site Scripting (XSS) in emlog v6.0.0 allows remote attackers to execute arbitrary code by adding a crafted script as a link to a new blog post.

Cross Site Scripting (XSS) in emlog v6.0.0 allows remote attackers to execute arbitrary code by adding a crafted script as a link to a new blog post.

Ссылки

EPSS

Процентиль: 71%

0.00686

Низкий

CVE ID

Дефекты

CWE-79

Связанные уязвимости

CVE-2020-18194

CVSS3: 6.1

nvd

больше 4 лет назад

Cross Site Scripting (XSS) in emlog v6.0.0 allows remote attackers to execute arbitrary code by adding a crafted script as a link to a new blog post.

EPSS

Процентиль: 71%

0.00686

Низкий

CVE ID

Дефекты

CWE-79