exploitDog

GHSA-9qpj-59m6-fgwh

Опубликовано: 24 мая 2022

Источник: github

Github: Не прошло ревью

CVSS3: 6.1

Описание

In Ant Design Pro 4.0.0, reflected XSS in the user/login redirect GET parameter affects the authorization component, leading to execution of JavaScript code in the login after-action script.

In Ant Design Pro 4.0.0, reflected XSS in the user/login redirect GET parameter affects the authorization component, leading to execution of JavaScript code in the login after-action script.

Ссылки

EPSS

Процентиль: 52%

0.00293

Низкий

6.1 Medium

CVSS3

CVE ID

Дефекты

CWE-79

Связанные уязвимости

CVE-2019-18350

CVSS3: 6.1

nvd

больше 6 лет назад

In Ant Design Pro 4.0.0, reflected XSS in the user/login redirect GET parameter affects the authorization component, leading to execution of JavaScript code in the login after-action script.

EPSS

Процентиль: 52%

0.00293

Низкий

6.1 Medium

CVSS3

CVE ID

Дефекты

CWE-79