Опубликовано: 19 сент. 2025
Источник: github
Github: Не прошло ревью
CVSS4: 5.9
CVSS3: 6.4
Описание
Improper Encoding or Escaping of Output vulnerability in Hallo Welt! GmbH BlueSpice (Extension:BlueSpiceAvatars) allows Cross-Site Scripting (XSS). This issue affects BlueSpice: from 5 through 5.1.1.
Improper Encoding or Escaping of Output vulnerability in Hallo Welt! GmbH BlueSpice (Extension:BlueSpiceAvatars) allows Cross-Site Scripting (XSS). This issue affects BlueSpice: from 5 through 5.1.1.
EPSS
Процентиль: 17%
0.00054
Низкий
5.9 Medium
CVSS4
6.4 Medium
CVSS3
CVE ID
Дефекты
CWE-116
CWE-79
Связанные уязвимости
CVSS3: 6.4
nvd
5 месяцев назад
Improper Encoding or Escaping of Output vulnerability in Hallo Welt! GmbH BlueSpice (Extension:BlueSpiceAvatars) allows Cross-Site Scripting (XSS). This issue affects BlueSpice: from 5 through 5.1.1.
EPSS
Процентиль: 17%
0.00054
Низкий
5.9 Medium
CVSS4
6.4 Medium
CVSS3
CVE ID
Дефекты
CWE-116
CWE-79