exploitDog

GHSA-8crc-hv97-gjhh

Опубликовано: 10 мая 2023

Источник: github

Github: Не прошло ревью

CVSS3: 5.4

Описание

Cross-site scripting vulnerability in Joruri Gw Ver 3.2.5 and earlier allows a remote authenticated attacker to inject an arbitrary script via Message Memo function of the affected product.

Cross-site scripting vulnerability in Joruri Gw Ver 3.2.5 and earlier allows a remote authenticated attacker to inject an arbitrary script via Message Memo function of the affected product.

Ссылки

EPSS

Процентиль: 58%

0.00371

Низкий

5.4 Medium

CVSS3

CVE ID

Дефекты

CWE-79

Связанные уязвимости

CVE-2023-27888

CVSS3: 5.4

nvd

больше 2 лет назад

Cross-site scripting vulnerability in Joruri Gw Ver 3.2.5 and earlier allows a remote authenticated attacker to inject an arbitrary script via Message Memo function of the affected product.

EPSS

Процентиль: 58%

0.00371

Низкий

5.4 Medium

CVSS3

CVE ID

Дефекты

CWE-79