Описание
Cross-site Scripting in xain
XSS is possible via the use of the order query parameter. An example request would look like:
http://host/ressources?order=%27><script>alert(1);</script>
Пакеты
Наименование
xain
Затронутые версииВерсия исправления
< 0.6.2
0.6.2
Связанные уязвимости
CVSS3: 6.1
nvd
около 7 лет назад
An XSS issue was discovered in Steve Pallen Xain before 0.6.2 via the order parameter.