exploitDog

GHSA-7hgv-4r3j-g6xr

Опубликовано: 03 июн. 2022

Источник: github

Github: Не прошло ревью

CVSS3: 6.1

Описание

resi-calltrace in RESI Gemini-Net 4.2 is affected by Multiple XSS issues. Unauthenticated remote attackers can inject arbitrary web script or HTML into an HTTP GET parameter that reflects user input without sanitization. This exists on numerous application endpoints,

resi-calltrace in RESI Gemini-Net 4.2 is affected by Multiple XSS issues. Unauthenticated remote attackers can inject arbitrary web script or HTML into an HTTP GET parameter that reflects user input without sanitization. This exists on numerous application endpoints,

Ссылки

EPSS

Процентиль: 78%

0.01145

Низкий

6.1 Medium

CVSS3

CVE ID

Дефекты

CWE-79

Связанные уязвимости

CVE-2022-29540

CVSS3: 6.1

nvd

больше 3 лет назад

resi-calltrace in RESI Gemini-Net 4.2 is affected by Multiple XSS issues. Unauthenticated remote attackers can inject arbitrary web script or HTML into an HTTP GET parameter that reflects user input without sanitization. This exists on numerous application endpoints,

EPSS

Процентиль: 78%

0.01145

Низкий

6.1 Medium

CVSS3

CVE ID

Дефекты

CWE-79