exploitDog

GHSA-6h6m-782c-4x8h

Опубликовано: 23 окт. 2024

Источник: github

Github: Не прошло ревью

CVSS3: 4.6

Описание

itsourcecode Loan Management System v1.0 is vulnerable to Cross Site Scripting (XSS) via a crafted payload to the lastname, firstname, middlename, address, contact_no, email and tax_id parameters in new borrowers functionality on the Borrowers page.

itsourcecode Loan Management System v1.0 is vulnerable to Cross Site Scripting (XSS) via a crafted payload to the lastname, firstname, middlename, address, contact_no, email and tax_id parameters in new borrowers functionality on the Borrowers page.

Ссылки

EPSS

Процентиль: 63%

0.00449

Низкий

4.6 Medium

CVSS3

CVE ID

Дефекты

CWE-79

Связанные уязвимости

CVE-2024-48415

CVSS3: 5

nvd

больше 1 года назад

itsourcecode Loan Management System v1.0 is vulnerable to Cross Site Scripting (XSS) via a crafted payload to the lastname, firstname, middlename, address, contact_no, email and tax_id parameters in new borrowers functionality on the Borrowers page.

EPSS

Процентиль: 63%

0.00449

Низкий

4.6 Medium

CVSS3

CVE ID

Дефекты

CWE-79