exploitDog

GHSA-5vvw-768m-99hf

Опубликовано: 03 мая 2025

Источник: github

Github: Не прошло ревью

CVSS3: 6.1

Описание

OpenGrok 1.13.25 has a reflected Cross-Site Scripting (XSS) issue when producing the history view page. This happens through improper handling of path segments. The application reflects unsanitized user input into the HTML output.

OpenGrok 1.13.25 has a reflected Cross-Site Scripting (XSS) issue when producing the history view page. This happens through improper handling of path segments. The application reflects unsanitized user input into the HTML output.

Ссылки

EPSS

Процентиль: 15%

0.0005

Низкий

6.1 Medium

CVSS3

CVE ID

Дефекты

CWE-79

Связанные уязвимости

CVE-2025-21572

CVSS3: 6.1

nvd

9 месяцев назад

OpenGrok 1.13.25 has a reflected Cross-Site Scripting (XSS) issue when producing the history view page. This happens through improper handling of path segments. The application reflects unsanitized user input into the HTML output.

EPSS

Процентиль: 15%

0.0005

Низкий

6.1 Medium

CVSS3

CVE ID

Дефекты

CWE-79