exploitDog

GHSA-c6h6-4q33-5jv5

Опубликовано: 01 мая 2022

Источник: github

Github: Не прошло ревью

Описание

Cross-site scripting (XSS) vulnerability in index.php in Justin Hagstrom AutoIndex PHP Script before 2.2.3 allows remote attackers to inject arbitrary web script or HTML via the PATH_INFO (PHP_SELF).

Cross-site scripting (XSS) vulnerability in index.php in Justin Hagstrom AutoIndex PHP Script before 2.2.3 allows remote attackers to inject arbitrary web script or HTML via the PATH_INFO (PHP_SELF).

Ссылки

EPSS

Процентиль: 93%

0.09523

Низкий

CVE ID

Дефекты

CWE-79

Связанные уязвимости

CVE-2007-5983

nvd

около 18 лет назад

Cross-site scripting (XSS) vulnerability in index.php in Justin Hagstrom AutoIndex PHP Script before 2.2.3 allows remote attackers to inject arbitrary web script or HTML via the PATH_INFO (PHP_SELF).

EPSS

Процентиль: 93%

0.09523

Низкий

CVE ID

Дефекты

CWE-79