Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

github логотип

GHSA-6267-4qx7-2rpc

Опубликовано: 11 нояб. 2025
Источник: github
Github: Не прошло ревью
CVSS4: 5.1
CVSS3: 5.4

Описание

HTML injection vulnerability found in Fairsketch's RISE CRM Framework v3.8.1, which consist of an HTML code injection due to lack of proper validation of user inputs by sending a POST request in parameter 'title' in '/tickets/save'.

HTML injection vulnerability found in Fairsketch's RISE CRM Framework v3.8.1, which consist of an HTML code injection due to lack of proper validation of user inputs by sending a POST request in parameter 'title' in '/tickets/save'.

Ссылки

EPSS

Процентиль: 11%
0.00039
Низкий

5.1 Medium

CVSS4

5.4 Medium

CVSS3

CVE ID

CVE-2025-41105

Дефекты

CWE-79

Связанные уязвимости

nvd логотип

CVE-2025-41105

CVSS3: 5.4
nvd
3 месяца назад

HTML injection vulnerability found in Fairsketch's RISE CRM Framework v3.8.1, which consist of an HTML code injection due to lack of proper validation of user inputs by sending a POST request in parameter 'title' in '/tickets/save'.

EPSS

Процентиль: 11%
0.00039
Низкий

5.1 Medium

CVSS4

5.4 Medium

CVSS3

CVE ID

CVE-2025-41105

Дефекты

CWE-79