exploitDog

GHSA-g7m5-cg8g-x45r

Опубликовано: 20 янв. 2026

Источник: github

Github: Не прошло ревью

CVSS3: 6.1

Описание

A reflected cross-site scripting (xss) vulnerability exists in the modifyRoute functionality of MedDream PACS Premium 7.3.6.870. A specially crafted malicious URL can lead to arbitrary javascript code execution. An attacker can provide a crafted URL to trigger this vulnerability.

A reflected cross-site scripting (xss) vulnerability exists in the modifyRoute functionality of MedDream PACS Premium 7.3.6.870. A specially crafted malicious URL can lead to arbitrary javascript code execution. An attacker can provide a crafted URL to trigger this vulnerability.

Ссылки

EPSS

Процентиль: 11%

0.00036

Низкий

6.1 Medium

CVSS3

CVE ID

Дефекты

CWE-79

Связанные уязвимости

CVE-2025-57787

CVSS3: 6.1

nvd

19 дней назад

A reflected cross-site scripting (xss) vulnerability exists in the modifyRoute functionality of MedDream PACS Premium 7.3.6.870. A specially crafted malicious URL can lead to arbitrary javascript code execution. An attacker can provide a crafted URL to trigger this vulnerability.

EPSS

Процентиль: 11%

0.00036

Низкий

6.1 Medium

CVSS3

CVE ID

Дефекты

CWE-79