exploitDog

GHSA-c6cx-98fx-j4rp

Опубликовано: 26 янв. 2026

Источник: github

Github: Не прошло ревью

CVSS4: 4.8

CVSS3: 5.4

Описание

Single Sign-On Portal System developed by WellChoose has a Reflected Cross-site Scripting vulnerability, allowing authenticated remote attackers to execute arbitrary JavaScript codes in user's browser through phishing attacks.

Single Sign-On Portal System developed by WellChoose has a Reflected Cross-site Scripting vulnerability, allowing authenticated remote attackers to execute arbitrary JavaScript codes in user's browser through phishing attacks.

Ссылки

EPSS

Процентиль: 1%

0.00012

Низкий

4.8 Medium

CVSS4

5.4 Medium

CVSS3

CVE ID

Дефекты

CWE-79

Связанные уязвимости

CVE-2026-1429

CVSS3: 5.4

nvd

13 дней назад

Single Sign-On Portal System developed by WellChoose has a Reflected Cross-site Scripting vulnerability, allowing authenticated remote attackers to execute arbitrary JavaScript codes in user's browser through phishing attacks.

EPSS

Процентиль: 1%

0.00012

Низкий

4.8 Medium

CVSS4

5.4 Medium

CVSS3

CVE ID

Дефекты

CWE-79