exploitDog

GHSA-3g7g-8ghp-wcmp

Опубликовано: 31 авг. 2024

Источник: github

Github: Не прошло ревью

CVSS3: 6.1

Описание

ShopXO 6.2 is vulnerable to Cross Site Scripting (XSS) in the backend that allows attackers to execute code by changing POST parameters.

ShopXO 6.2 is vulnerable to Cross Site Scripting (XSS) in the backend that allows attackers to execute code by changing POST parameters.

Ссылки

EPSS

Процентиль: 38%

0.00171

Низкий

6.1 Medium

CVSS3

CVE ID

Дефекты

CWE-79

Связанные уязвимости

CVE-2024-44682

CVSS3: 6.1

nvd

больше 1 года назад

ShopXO 6.2 is vulnerable to Cross Site Scripting (XSS) in the backend that allows attackers to execute code by changing POST parameters.

EPSS

Процентиль: 38%

0.00171

Низкий

6.1 Medium

CVSS3

CVE ID

Дефекты

CWE-79