exploitDog

GHSA-grfr-9wgw-28v2

Опубликовано: 28 сент. 2023

Источник: github

Github: Не прошло ревью

CVSS3: 6.1

Описание

Cross Site Scripting vulnerability in phpkobo AjaxNewTicker v.1.0.5 allows a remote attacker to execute arbitrary code via a crafted script to the title parameter in the index.php component.

Cross Site Scripting vulnerability in phpkobo AjaxNewTicker v.1.0.5 allows a remote attacker to execute arbitrary code via a crafted script to the title parameter in the index.php component.

Ссылки

EPSS

Процентиль: 71%

0.00666

Низкий

6.1 Medium

CVSS3

CVE ID

Дефекты

CWE-79

Связанные уязвимости

CVE-2023-41446

CVSS3: 6.1

nvd

больше 2 лет назад

Cross Site Scripting vulnerability in phpkobo AjaxNewTicker v.1.0.5 allows a remote attacker to execute arbitrary code via a crafted script to the title parameter in the index.php component.

EPSS

Процентиль: 71%

0.00666

Низкий

6.1 Medium

CVSS3

CVE ID

Дефекты

CWE-79