Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

github логотип

GHSA-h468-v7vm-426v

Опубликовано: 02 мая 2022
Источник: github
Github: Не прошло ревью

Описание

Cross-site scripting (XSS) vulnerability in assess.php in evalSMSI 2.1.03 allows remote attackers to inject arbitrary web script or HTML via the reports comment box in a continue_assess action. NOTE: some of these details are obtained from third party information.

Cross-site scripting (XSS) vulnerability in assess.php in evalSMSI 2.1.03 allows remote attackers to inject arbitrary web script or HTML via the reports comment box in a continue_assess action. NOTE: some of these details are obtained from third party information.

Ссылки

EPSS

Процентиль: 66%
0.00515
Низкий

CVE ID

CVE-2010-0615

Дефекты

CWE-79

Связанные уязвимости

nvd логотип

CVE-2010-0615

nvd
почти 16 лет назад

Cross-site scripting (XSS) vulnerability in assess.php in evalSMSI 2.1.03 allows remote attackers to inject arbitrary web script or HTML via the reports comment box in a continue_assess action. NOTE: some of these details are obtained from third party information.

EPSS

Процентиль: 66%
0.00515
Низкий

CVE ID

CVE-2010-0615

Дефекты

CWE-79