exploitDog

GHSA-7mpm-45vm-v7fc

Опубликовано: 30 нояб. 2023

Источник: github

Github: Не прошло ревью

CVSS3: 5.9

Описание

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in WebDorado SpiderVPlayer allows Stored XSS.This issue affects SpiderVPlayer: from n/a through 1.5.22.

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in WebDorado SpiderVPlayer allows Stored XSS.This issue affects SpiderVPlayer: from n/a through 1.5.22.

Ссылки

EPSS

Процентиль: 38%

0.00165

Низкий

5.9 Medium

CVSS3

CVE ID

Дефекты

CWE-79

Связанные уязвимости

CVE-2023-48320

CVSS3: 5.9

nvd

около 2 лет назад

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in WebDorado SpiderVPlayer allows Stored XSS.This issue affects SpiderVPlayer: from n/a through 1.5.22.

EPSS

Процентиль: 38%

0.00165

Низкий

5.9 Medium

CVSS3

CVE ID

Дефекты

CWE-79