Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

github логотип

GHSA-fvwf-3473-r6jq

Опубликовано: 24 мая 2022
Источник: github
Github: Не прошло ревью
CVSS3: 6.1

Описание

An issue was discovered in ProVide (formerly zFTPServer) through 13.1. The Admin Web Interface has Multiple Stored and Reflected XSS. GetInheritedProperties is Reflected via the groups parameter. GetUserInfo is Reflected via POST data. SetUserInfo is Stored via the general parameter.

An issue was discovered in ProVide (formerly zFTPServer) through 13.1. The Admin Web Interface has Multiple Stored and Reflected XSS. GetInheritedProperties is Reflected via the groups parameter. GetUserInfo is Reflected via POST data. SetUserInfo is Stored via the general parameter.

Ссылки

EPSS

Процентиль: 61%
0.00421
Низкий

6.1 Medium

CVSS3

CVE ID

CVE-2020-11704

Дефекты

CWE-79

Связанные уязвимости

nvd логотип

CVE-2020-11704

CVSS3: 6.1
nvd
почти 6 лет назад

An issue was discovered in ProVide (formerly zFTPServer) through 13.1. The Admin Web Interface has Multiple Stored and Reflected XSS. GetInheritedProperties is Reflected via the groups parameter. GetUserInfo is Reflected via POST data. SetUserInfo is Stored via the general parameter.

EPSS

Процентиль: 61%
0.00421
Низкий

6.1 Medium

CVSS3

CVE ID

CVE-2020-11704

Дефекты

CWE-79