exploitDog

GHSA-7wg6-8ch9-xw5r

Опубликовано: 13 мая 2022

Источник: github

Github: Не прошло ревью

CVSS3: 8.8

Описание

Open-AudIT Professional 2.1 has CSRF, as demonstrated by modifying a user account or inserting XSS sequences via the credentials URI.

Open-AudIT Professional 2.1 has CSRF, as demonstrated by modifying a user account or inserting XSS sequences via the credentials URI.

Ссылки

EPSS

Процентиль: 57%

0.00356

Низкий

8.8 High

CVSS3

CVE ID

Дефекты

CWE-352

Связанные уязвимости

CVE-2018-8979

CVSS3: 8.8

nvd

почти 8 лет назад

Open-AudIT Professional 2.1 has CSRF, as demonstrated by modifying a user account or inserting XSS sequences via the credentials URI.

EPSS

Процентиль: 57%

0.00356

Низкий

8.8 High

CVSS3

CVE ID

Дефекты

CWE-352