exploitDog

GHSA-gjqq-f3mg-pp9x

Опубликовано: 01 мая 2022

Источник: github

Github: Не прошло ревью

Описание

Unspecified vulnerability in Default.aspx in Podium CMS allows remote attackers to have an unknown impact, possibly session fixation, via a META HTTP-EQUIV Set-cookie expression in the id parameter, related to "cookie manipulation." NOTE: this issue might be cross-site scripting (XSS).

Unspecified vulnerability in Default.aspx in Podium CMS allows remote attackers to have an unknown impact, possibly session fixation, via a META HTTP-EQUIV Set-cookie expression in the id parameter, related to "cookie manipulation." NOTE: this issue might be cross-site scripting (XSS).

Ссылки

EPSS

Процентиль: 57%

0.00347

Низкий

CVE ID

Дефекты

CWE-287

Связанные уязвимости

CVE-2007-2555

nvd

больше 18 лет назад

Unspecified vulnerability in Default.aspx in Podium CMS allows remote attackers to have an unknown impact, possibly session fixation, via a META HTTP-EQUIV Set-cookie expression in the id parameter, related to "cookie manipulation." NOTE: this issue might be cross-site scripting (XSS).

EPSS

Процентиль: 57%

0.00347

Низкий

CVE ID

Дефекты

CWE-287