Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

github логотип

GHSA-gj3p-j74v-3x57

Опубликовано: 27 сент. 2024
Источник: github
Github: Прошло ревью
CVSS4: 1.9
CVSS3: 3.3

Описание

ReLaXed Cross-site Scripting vulnerability

A vulnerability classified as problematic has been found in RelaxedJS ReLaXed up to 0.2.2. Affected is an unknown function of the component Pug to PDF Converter. The manipulation leads to cross site scripting. An attack has to be approached locally. The exploit has been disclosed to the public and may be used.

Ссылки

Пакеты

Наименование

relaxedjs

npm
Затронутые версииВерсия исправления

<= 0.2.5

Отсутствует

EPSS

Процентиль: 15%
0.00049
Низкий

1.9 Low

CVSS4

3.3 Low

CVSS3

CVE ID

CVE-2024-9283

Дефекты

CWE-79

Связанные уязвимости

nvd логотип

CVE-2024-9283

CVSS3: 3.3
nvd
больше 1 года назад

A vulnerability classified as problematic has been found in RelaxedJS ReLaXed up to 0.2.2. Affected is an unknown function of the component Pug to PDF Converter. The manipulation leads to cross site scripting. An attack has to be approached locally. The exploit has been disclosed to the public and may be used.

EPSS

Процентиль: 15%
0.00049
Низкий

1.9 Low

CVSS4

3.3 Low

CVSS3

CVE ID

CVE-2024-9283

Дефекты

CWE-79