exploitDog

GHSA-fmr6-95vp-532q

Опубликовано: 27 апр. 2023

Источник: github

Github: Не прошло ревью

CVSS3: 6.1

Описание

Reflected Cross Site Scripting (XSS) in Intermesh BV Group-Office version 6.6.145, allows attackers to gain escalated privileges and gain sensitive information via the GO_LANGUAGE cookie.

Reflected Cross Site Scripting (XSS) in Intermesh BV Group-Office version 6.6.145, allows attackers to gain escalated privileges and gain sensitive information via the GO_LANGUAGE cookie.

Ссылки

EPSS

Процентиль: 51%

0.00279

Низкий

6.1 Medium

CVSS3

CVE ID

Дефекты

CWE-79

Связанные уязвимости

CVE-2023-25292

CVSS3: 6.1

nvd

почти 3 года назад

Reflected Cross Site Scripting (XSS) in Intermesh BV Group-Office version 6.6.145, allows attackers to gain escalated privileges and gain sensitive information via the GO_LANGUAGE cookie.

EPSS

Процентиль: 51%

0.00279

Низкий

6.1 Medium

CVSS3

CVE ID

Дефекты

CWE-79