exploitDog

GHSA-3v8q-qjqp-v6qj

Опубликовано: 30 июн. 2023

Источник: github

Github: Не прошло ревью

CVSS3: 5.4

Описание

Stored cross-site scripting vulnerability in Pleasanter (Community Edition and Enterprise Edition) 1.3.39.2 and earlier versions allows a remote authenticated attacker to inject an arbitrary script.

Stored cross-site scripting vulnerability in Pleasanter (Community Edition and Enterprise Edition) 1.3.39.2 and earlier versions allows a remote authenticated attacker to inject an arbitrary script.

Ссылки

EPSS

Процентиль: 53%

0.00297

Низкий

5.4 Medium

CVSS3

CVE ID

Дефекты

CWE-79

Связанные уязвимости

CVE-2023-32607

CVSS3: 5.4

nvd

больше 2 лет назад

Stored cross-site scripting vulnerability in Pleasanter (Community Edition and Enterprise Edition) 1.3.39.2 and earlier versions allows a remote authenticated attacker to inject an arbitrary script.

EPSS

Процентиль: 53%

0.00297

Низкий

5.4 Medium

CVSS3

CVE ID

Дефекты

CWE-79