exploitDog

GHSA-7q7g-fjp6-g4rg

Опубликовано: 31 янв. 2025

Источник: github

Github: Не прошло ревью

CVSS3: 6.1

Описание

Reflected Cross-Site Scripting (XSS) in TeamCal Neo, version 3.8.2. This allows an attacker to execute malicious JavaScript code, after injecting code via the ‘abs’ parameter in ‘/teamcal/src/index.php’.

Reflected Cross-Site Scripting (XSS) in TeamCal Neo, version 3.8.2. This allows an attacker to execute malicious JavaScript code, after injecting code via the ‘abs’ parameter in ‘/teamcal/src/index.php’.

Ссылки

EPSS

Процентиль: 18%

0.00056

Низкий

6.1 Medium

CVSS3

CVE ID

Дефекты

CWE-79

Связанные уязвимости

CVE-2025-0930

CVSS3: 6.1

nvd

около 1 года назад

Reflected Cross-Site Scripting (XSS) in TeamCal Neo, version 3.8.2. This allows an attacker to execute malicious JavaScript code, after injecting code via the ‘abs’ parameter in ‘/teamcal/src/index.php’.

EPSS

Процентиль: 18%

0.00056

Низкий

6.1 Medium

CVSS3

CVE ID

Дефекты

CWE-79