exploitDog

GHSA-h97f-mg55-8293

Опубликовано: 01 мая 2022

Источник: github

Github: Не прошло ревью

Описание

Cross-site scripting (XSS) vulnerability in lib/owl.lib.php in Steve Bourgeois and Chris Vincent Owl Intranet Knowledgebase 0.95 and earlier allows remote attackers to inject arbitrary web script or HTML via the username parameter in a getpasswd action to register.php.

Cross-site scripting (XSS) vulnerability in lib/owl.lib.php in Steve Bourgeois and Chris Vincent Owl Intranet Knowledgebase 0.95 and earlier allows remote attackers to inject arbitrary web script or HTML via the username parameter in a getpasswd action to register.php.

Ссылки

EPSS

Процентиль: 93%

0.09254

Низкий

CVE ID

Дефекты

CWE-79

Связанные уязвимости

CVE-2008-3100

ubuntu

больше 17 лет назад

Cross-site scripting (XSS) vulnerability in lib/owl.lib.php in Steve Bourgeois and Chris Vincent Owl Intranet Knowledgebase 0.95 and earlier allows remote attackers to inject arbitrary web script or HTML via the username parameter in a getpasswd action to register.php.

CVE-2008-3100

nvd

больше 17 лет назад

Cross-site scripting (XSS) vulnerability in lib/owl.lib.php in Steve Bourgeois and Chris Vincent Owl Intranet Knowledgebase 0.95 and earlier allows remote attackers to inject arbitrary web script or HTML via the username parameter in a getpasswd action to register.php.

CVE-2008-3100

debian

больше 17 лет назад

Cross-site scripting (XSS) vulnerability in lib/owl.lib.php in Steve B ...

EPSS

Процентиль: 93%

0.09254

Низкий

CVE ID

Дефекты

CWE-79