exploitDog

GHSA-cc8c-93xf-8jgq

Опубликовано: 25 сент. 2022

Источник: github

Github: Не прошло ревью

CVSS3: 5.4

Описание

An issue was discovered in AjaXplorer 4.2.3, allows attackers to cause cross site scripting vulnerabilities via a crafted svg file upload.

An issue was discovered in AjaXplorer 4.2.3, allows attackers to cause cross site scripting vulnerabilities via a crafted svg file upload.

Ссылки

EPSS

Процентиль: 52%

0.00285

Низкий

5.4 Medium

CVSS3

CVE ID

Дефекты

CWE-79

Связанные уязвимости

CVE-2022-40358

CVSS3: 5.4

nvd

больше 3 лет назад

An issue was discovered in AjaXplorer 4.2.3, allows attackers to cause cross site scripting vulnerabilities via a crafted svg file upload.

CVE-2022-40358

CVSS3: 5.4

debian

больше 3 лет назад

An issue was discovered in AjaXplorer 4.2.3, allows attackers to cause ...

EPSS

Процентиль: 52%

0.00285

Низкий

5.4 Medium

CVSS3

CVE ID

Дефекты

CWE-79