exploitDog

GHSA-9mh2-296v-wg62

Опубликовано: 27 сент. 2023

Источник: github

Github: Не прошло ревью

CVSS3: 6.1

Описание

Cross-site scripting vulnerability in Order Data Edit page of Welcart e-Commerce versions 2.7 to 2.8.21 allows a remote unauthenticated attacker to inject an arbitrary script.

Cross-site scripting vulnerability in Order Data Edit page of Welcart e-Commerce versions 2.7 to 2.8.21 allows a remote unauthenticated attacker to inject an arbitrary script.

Ссылки

EPSS

Процентиль: 46%

0.00235

Низкий

6.1 Medium

CVSS3

CVE ID

Дефекты

CWE-79

Связанные уязвимости

CVE-2023-43614

CVSS3: 6.1

nvd

больше 2 лет назад

Cross-site scripting vulnerability in Order Data Edit page of Welcart e-Commerce versions 2.7 to 2.8.21 allows a remote unauthenticated attacker to inject an arbitrary script.

EPSS

Процентиль: 46%

0.00235

Низкий

6.1 Medium

CVSS3

CVE ID

Дефекты

CWE-79