exploitDog

GHSA-7m88-4p79-28r9

Опубликовано: 27 окт. 2023

Источник: github

Github: Не прошло ревью

CVSS3: 4.8

Описание

An issue was discovered in VERMEG AgileReporter 21.3. Attackers can gain privileges via an XSS payload in an Add Comment action to the Activity log.

An issue was discovered in VERMEG AgileReporter 21.3. Attackers can gain privileges via an XSS payload in an Add Comment action to the Activity log.

Ссылки

EPSS

Процентиль: 19%

0.00061

Низкий

4.8 Medium

CVSS3

CVE ID

Дефекты

CWE-79

Связанные уязвимости

CVE-2022-34834

CVSS3: 4.8

nvd

больше 2 лет назад

An issue was discovered in VERMEG AgileReporter 21.3. Attackers can gain privileges via an XSS payload in an Add Comment action to the Activity log.

EPSS

Процентиль: 19%

0.00061

Низкий

4.8 Medium

CVSS3

CVE ID

Дефекты

CWE-79