exploitDog

GHSA-f7cc-9jjr-586q

Опубликовано: 17 сент. 2025

Источник: github

Github: Не прошло ревью

CVSS3: 7.1

Описание

Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Dokuzsoft Technology E-Commerce Web Design Product allows XSS Through HTTP Headers.This issue affects E-Commerce Web Design Product: before 11.08.2025.

Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Dokuzsoft Technology E-Commerce Web Design Product allows XSS Through HTTP Headers.This issue affects E-Commerce Web Design Product: before 11.08.2025.

Ссылки

EPSS

Процентиль: 20%

0.00064

Низкий

7.1 High

CVSS3

CVE ID

Дефекты

CWE-79

Связанные уязвимости

CVE-2025-8411

CVSS3: 7.1

nvd

5 месяцев назад

Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Dokuzsoft Technology E-Commerce Web Design Product allows XSS Through HTTP Headers.This issue affects E-Commerce Web Design Product: before 11.08.2025.

EPSS

Процентиль: 20%

0.00064

Низкий

7.1 High

CVSS3

CVE ID

Дефекты

CWE-79