exploitDog

GHSA-46qf-8hcj-5668

Опубликовано: 31 мар. 2022

Источник: github

Github: Не прошло ревью

CVSS3: 9

Описание

Improper Neutralization of Script-Related HTML Tags in a Web Page (Basic XSS) vulnerability in Group Functionality of Profelis IT Consultancy SambaBox allows AUTHENTICATED user to cause execute arbitrary codes on the vulnerable server. This issue affects: Profelis IT Consultancy SambaBox 4.0 version 4.0 and prior versions on x86.

Improper Neutralization of Script-Related HTML Tags in a Web Page (Basic XSS) vulnerability in Group Functionality of Profelis IT Consultancy SambaBox allows AUTHENTICATED user to cause execute arbitrary codes on the vulnerable server. This issue affects: Profelis IT Consultancy SambaBox 4.0 version 4.0 and prior versions on x86.

Ссылки

EPSS

Процентиль: 75%

0.00888

Низкий

9 Critical

CVSS3

CVE ID

Дефекты

CWE-79

Связанные уязвимости

CVE-2022-25620

CVSS3: 3.8

nvd

почти 4 года назад

Improper Neutralization of Script-Related HTML Tags in a Web Page (Basic XSS) vulnerability in Group Functionality of Profelis IT Consultancy SambaBox allows AUTHENTICATED user to cause execute arbitrary codes on the vulnerable server. This issue affects: Profelis IT Consultancy SambaBox 4.0 version 4.0 and prior versions on x86.

EPSS

Процентиль: 75%

0.00888

Низкий

9 Critical

CVSS3

CVE ID

Дефекты

CWE-79