exploitDog

GHSA-97f5-f6qw-4683

Опубликовано: 24 мая 2022

Источник: github

Github: Не прошло ревью

Описание

myDBR 5.8.3/4262 is affected by: Cross Site Scripting (XSS). The impact is: execute arbitrary code (remote). The component is: CSRF Token. The attack vector is: CSRF token injection to XSS.

myDBR 5.8.3/4262 is affected by: Cross Site Scripting (XSS). The impact is: execute arbitrary code (remote). The component is: CSRF Token. The attack vector is: CSRF token injection to XSS.

Ссылки

EPSS

Процентиль: 56%

0.00339

Низкий

CVE ID

Дефекты

CWE-79

Связанные уязвимости

CVE-2020-28149

CVSS3: 9.6

nvd

почти 5 лет назад

myDBR 5.8.3/4262 is affected by: Cross Site Scripting (XSS). The impact is: execute arbitrary code (remote). The component is: CSRF Token. The attack vector is: CSRF token injection to XSS.

EPSS

Процентиль: 56%

0.00339

Низкий

CVE ID

Дефекты

CWE-79