exploitDog

GHSA-4999-f2hx-vhhq

Опубликовано: 20 янв. 2026

Источник: github

Github: Не прошло ревью

CVSS4: 5.1

Описание

HTML injection vulnerability in multiple Botble products such as TransP, Athena, Martfury, and Homzen, consisting of an HTML injection due to a lack of proper validation of user input by sending a request to '/search' using the 'q' parameter.

HTML injection vulnerability in multiple Botble products such as TransP, Athena, Martfury, and Homzen, consisting of an HTML injection due to a lack of proper validation of user input by sending a request to '/search' using the 'q' parameter.

Ссылки

EPSS

Процентиль: 19%

0.00062

Низкий

5.1 Medium

CVSS4

CVE ID

Дефекты

CWE-79

Связанные уязвимости

CVE-2026-1183

nvd

19 дней назад

HTML injection vulnerability in multiple Botble products such as TransP, Athena, Martfury, and Homzen, consisting of an HTML injection due to a lack of proper validation of user input by sending a request to '/search' using the 'q' parameter.

EPSS

Процентиль: 19%

0.00062

Низкий

5.1 Medium

CVSS4

CVE ID

Дефекты

CWE-79