exploitDog

GHSA-c38j-jgpp-72xp

Опубликовано: 24 мая 2022

Источник: github

Github: Не прошло ревью

Описание

An issue was discovered in Mediat 1.4.1. There is a Reflected XSS vulnerability which allows remote attackers to inject arbitrary web script or HTML without authentication via the 'return' parameter in login.php.

An issue was discovered in Mediat 1.4.1. There is a Reflected XSS vulnerability which allows remote attackers to inject arbitrary web script or HTML without authentication via the 'return' parameter in login.php.

Ссылки

EPSS

Процентиль: 38%

0.00164

Низкий

CVE ID

Дефекты

CWE-79

Связанные уязвимости

CVE-2021-30083

CVSS3: 6.1

nvd

больше 4 лет назад

An issue was discovered in Mediat 1.4.1. There is a Reflected XSS vulnerability which allows remote attackers to inject arbitrary web script or HTML without authentication via the 'return' parameter in login.php.

EPSS

Процентиль: 38%

0.00164

Низкий

CVE ID

Дефекты

CWE-79