exploitDog

GHSA-c396-cvpq-g9cm

Опубликовано: 16 июн. 2025

Источник: github

Github: Не прошло ревью

CVSS4: 4.8

CVSS3: 6.1

Описание

Reflected Cross-Site Scripting (XSS) in /customer_support/index.php in Customer Support System v1.0, which allows remote attackers to execute arbitrary code via the page parameter.

Reflected Cross-Site Scripting (XSS) in /customer_support/index.php in Customer Support System v1.0, which allows remote attackers to execute arbitrary code via the page parameter.

Ссылки

EPSS

Процентиль: 19%

0.0006

Низкий

4.8 Medium

CVSS4

6.1 Medium

CVSS3

CVE ID

Дефекты

CWE-79

Связанные уязвимости

CVE-2025-40729

CVSS3: 6.1

nvd

8 месяцев назад

Reflected Cross-Site Scripting (XSS) in /customer_support/index.php in Customer Support System v1.0, which allows remote attackers to execute arbitrary code via the page parameter.

EPSS

Процентиль: 19%

0.0006

Низкий

4.8 Medium

CVSS4

6.1 Medium

CVSS3

CVE ID

Дефекты

CWE-79