exploitDog

GHSA-6cv8-6mfg-q2g8

Опубликовано: 24 мая 2022

Источник: github

Github: Не прошло ревью

Описание

ERPNext 11.1.47 allows reflected XSS via the PATH_INFO to the user/ URI, as demonstrated by a crafted e-mail address.

ERPNext 11.1.47 allows reflected XSS via the PATH_INFO to the user/ URI, as demonstrated by a crafted e-mail address.

Ссылки

EPSS

Процентиль: 56%

0.00344

Низкий

CVE ID

Связанные уязвимости

CVE-2019-20519

CVSS3: 6.1

nvd

почти 6 лет назад

ERPNext 11.1.47 allows reflected XSS via the PATH_INFO to the user/ URI, as demonstrated by a crafted e-mail address.

EPSS

Процентиль: 56%

0.00344

Низкий

CVE ID