exploitDog

GHSA-fq7f-prvj-g7c3

Опубликовано: 09 окт. 2025

Источник: github

Github: Не прошло ревью

CVSS3: 6.1

Описание

code-projects Client Details System 1.0 is vulnerable to Cross Site Scripting (XSS). When adding customer information, the client details system fills in malicious JavaScript code in the username field.

code-projects Client Details System 1.0 is vulnerable to Cross Site Scripting (XSS). When adding customer information, the client details system fills in malicious JavaScript code in the username field.

Ссылки

EPSS

Процентиль: 16%

0.00051

Низкий

6.1 Medium

CVSS3

CVE ID

Дефекты

CWE-79

Связанные уязвимости

CVE-2025-60302

CVSS3: 6.1

nvd

4 месяца назад

code-projects Client Details System 1.0 is vulnerable to Cross Site Scripting (XSS). When adding customer information, the client details system fills in malicious JavaScript code in the username field.

EPSS

Процентиль: 16%

0.00051

Низкий

6.1 Medium

CVSS3

CVE ID

Дефекты

CWE-79