exploitDog

GHSA-gq8p-433v-c385

Опубликовано: 04 нояб. 2022

Источник: github

Github: Не прошло ревью

CVSS3: 5.4

Описание

The Handy Tip macro in Stiltsoft Handy Macros for Confluence Server/Data Center 3.x before 3.5.5 allows remote attackers to inject arbitrary HTML or JavaScript via a Cross-Site Scripting (XSS) vulnerability.

The Handy Tip macro in Stiltsoft Handy Macros for Confluence Server/Data Center 3.x before 3.5.5 allows remote attackers to inject arbitrary HTML or JavaScript via a Cross-Site Scripting (XSS) vulnerability.

Ссылки

EPSS

Процентиль: 58%

0.00363

Низкий

5.4 Medium

CVSS3

CVE ID

Дефекты

CWE-79

Связанные уязвимости

CVE-2022-44724

CVSS3: 8.9

nvd

больше 3 лет назад

The Handy Tip macro in Stiltsoft Handy Macros for Confluence Server/Data Center 3.x before 3.5.5 allows remote attackers to inject arbitrary HTML or JavaScript via a Cross-Site Scripting (XSS) vulnerability.

EPSS

Процентиль: 58%

0.00363

Низкий

5.4 Medium

CVSS3

CVE ID

Дефекты

CWE-79