exploitDog

GHSA-67p3-vgwg-jfjf

Опубликовано: 30 окт. 2023

Источник: github

Github: Не прошло ревью

CVSS3: 5.4

Описание

HTML and SMTP injections on the registration page of LiquidFiles versions 3.7.13 and below, allow an attacker to perform more advanced phishing attacks against an organization.

HTML and SMTP injections on the registration page of LiquidFiles versions 3.7.13 and below, allow an attacker to perform more advanced phishing attacks against an organization.

Ссылки

EPSS

Процентиль: 53%

0.00297

Низкий

5.4 Medium

CVSS3

CVE ID

Дефекты

CWE-116

CWE-20

CWE-74

Связанные уязвимости

CVE-2023-4393

CVSS3: 5.4

nvd

больше 2 лет назад

HTML and SMTP injections on the registration page of LiquidFiles versions 3.7.13 and below, allow an attacker to perform more advanced phishing attacks against an organization.

EPSS

Процентиль: 53%

0.00297

Низкий

5.4 Medium

CVSS3

CVE ID

Дефекты

CWE-116

CWE-20

CWE-74