exploitDog

GHSA-6qf7-f2m4-35xq

Опубликовано: 02 дек. 2025

Источник: github

Github: Не прошло ревью

CVSS3: 6.1

Описание

DeepSeek V3.2 has a Cross Site Scripting (XSS) vulnerability, which allows JavaScript execution through model-generated SVG content.

DeepSeek V3.2 has a Cross Site Scripting (XSS) vulnerability, which allows JavaScript execution through model-generated SVG content.

Ссылки

EPSS

Процентиль: 17%

0.00054

Низкий

6.1 Medium

CVSS3

CVE ID

Дефекты

CWE-79

Связанные уязвимости

CVE-2025-63872

CVSS3: 6.1

nvd

2 месяца назад

DeepSeek V3.2 has a Cross Site Scripting (XSS) vulnerability, which allows JavaScript execution through model-generated SVG content.

EPSS

Процентиль: 17%

0.00054

Низкий

6.1 Medium

CVSS3

CVE ID

Дефекты

CWE-79