exploitDog

GHSA-c8ff-jp9w-qjg8

Опубликовано: 14 сент. 2023

Источник: github

Github: Не прошло ревью

CVSS3: 5.4

Описание

A Stored Cross-Site Scripting (XSS) vulnerability in the filter and forward mail tab in Usermin 2.001 allows remote attackers to inject arbitrary web script or HTML via the save to new folder named field while creating a new filter.

A Stored Cross-Site Scripting (XSS) vulnerability in the filter and forward mail tab in Usermin 2.001 allows remote attackers to inject arbitrary web script or HTML via the save to new folder named field while creating a new filter.

Ссылки

EPSS

Процентиль: 33%

0.00126

Низкий

5.4 Medium

CVSS3

CVE ID

Дефекты

CWE-79

Связанные уязвимости

CVE-2023-41156

CVSS3: 5.4

nvd

больше 2 лет назад

A Stored Cross-Site Scripting (XSS) vulnerability in the filter and forward mail tab in Usermin 2.001 allows remote attackers to inject arbitrary web script or HTML via the save to new folder named field while creating a new filter.

EPSS

Процентиль: 33%

0.00126

Низкий

5.4 Medium

CVSS3

CVE ID

Дефекты

CWE-79