exploitDog

GHSA-8x38-v676-xr9j

Опубликовано: 24 мая 2022

Источник: github

Github: Не прошло ревью

Описание

A Reflected Cross Site Scripting (XSS) Vulnerability was discovered in Wcms 0.3.2, which allows remote attackers to inject arbitrary web script and HTML via the type parameter to wex/cssjs.php.

A Reflected Cross Site Scripting (XSS) Vulnerability was discovered in Wcms 0.3.2, which allows remote attackers to inject arbitrary web script and HTML via the type parameter to wex/cssjs.php.

Ссылки

EPSS

Процентиль: 51%

0.00283

Низкий

CVE ID

Дефекты

CWE-79

Связанные уязвимости

CVE-2020-24135

CVSS3: 6.1

nvd

почти 5 лет назад

A Reflected Cross Site Scripting (XSS) Vulnerability was discovered in Wcms 0.3.2, which allows remote attackers to inject arbitrary web script and HTML via the type parameter to wex/cssjs.php.

EPSS

Процентиль: 51%

0.00283

Низкий

CVE ID

Дефекты

CWE-79