exploitDog

GHSA-f24j-hhmv-5ccv

Опубликовано: 26 апр. 2024

Источник: github

Github: Не прошло ревью

CVSS3: 7.1

Описание

Cross Site Scripting (XSS) vulnerability in BOSSCMS v3.10 allows attackers to run arbitrary code via the header code and footer code fields in code configuration.

Cross Site Scripting (XSS) vulnerability in BOSSCMS v3.10 allows attackers to run arbitrary code via the header code and footer code fields in code configuration.

Ссылки

EPSS

Процентиль: 21%

0.00068

Низкий

7.1 High

CVSS3

CVE ID

Дефекты

CWE-79

Связанные уязвимости

CVE-2024-31609

CVSS3: 7.1

nvd

почти 2 года назад

Cross Site Scripting (XSS) vulnerability in BOSSCMS v3.10 allows attackers to run arbitrary code via the header code and footer code fields in code configuration.

EPSS

Процентиль: 21%

0.00068

Низкий

7.1 High

CVSS3

CVE ID

Дефекты

CWE-79