exploitDog

GHSA-gwg7-mp6r-mj4h

Опубликовано: 24 мая 2022

Источник: github

Github: Не прошло ревью

Описание

OpenAsset Digital Asset Management (DAM) through 12.0.19, does not correctly sanitize user supplied input in multiple parameters and endpoints, allowing for stored cross-site scripting attacks.

OpenAsset Digital Asset Management (DAM) through 12.0.19, does not correctly sanitize user supplied input in multiple parameters and endpoints, allowing for stored cross-site scripting attacks.

Ссылки

EPSS

Процентиль: 65%

0.00482

Низкий

CVE ID

Дефекты

CWE-79

Связанные уязвимости

CVE-2020-28857

CVSS3: 6.1

nvd

около 5 лет назад

OpenAsset Digital Asset Management (DAM) through 12.0.19, does not correctly sanitize user supplied input in multiple parameters and endpoints, allowing for stored cross-site scripting attacks.

EPSS

Процентиль: 65%

0.00482

Низкий

CVE ID

Дефекты

CWE-79