Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

github логотип

GHSA-5795-f5xp-rfch

Опубликовано: 30 апр. 2022
Источник: github
Github: Не прошло ревью

Описание

Multiple cross-site scripting (XSS) vulnerabilities in Actinic Catalog 4.7.0 allow remote attackers to inject arbitrary web script or HTML via (1) the query string argument to certain .pl files, (2) the REFPAGE parameter to ca000007.pl, (3) PRODREF parameter to ss000007.pl, or (4) hop parameter to ca000001.pl.

Multiple cross-site scripting (XSS) vulnerabilities in Actinic Catalog 4.7.0 allow remote attackers to inject arbitrary web script or HTML via (1) the query string argument to certain .pl files, (2) the REFPAGE parameter to ca000007.pl, (3) PRODREF parameter to ss000007.pl, or (4) hop parameter to ca000001.pl.

Ссылки

EPSS

Процентиль: 68%
0.00558
Низкий

CVE ID

CVE-2002-1732

Связанные уязвимости

nvd логотип

CVE-2002-1732

nvd
около 23 лет назад

Multiple cross-site scripting (XSS) vulnerabilities in Actinic Catalog 4.7.0 allow remote attackers to inject arbitrary web script or HTML via (1) the query string argument to certain .pl files, (2) the REFPAGE parameter to ca000007.pl, (3) PRODREF parameter to ss000007.pl, or (4) hop parameter to ca000001.pl.

EPSS

Процентиль: 68%
0.00558
Низкий

CVE ID

CVE-2002-1732