exploitDog

GHSA-j7j3-j59j-p82h

Опубликовано: 03 июл. 2025

Источник: github

Github: Не прошло ревью

CVSS4: 5.1

Описание

Stored Cross-Site Scripting (XSS) vulnerability in versions prior to Flatboard 3.2.2 of Flatboard Pro, consisting of a stored XSS due to lack of proper validation of user input, through the footer_text and announcement parameters in config.php.

Stored Cross-Site Scripting (XSS) vulnerability in versions prior to Flatboard 3.2.2 of Flatboard Pro, consisting of a stored XSS due to lack of proper validation of user input, through the footer_text and announcement parameters in config.php.

Ссылки

EPSS

Процентиль: 17%

0.00056

Низкий

5.1 Medium

CVSS4

CVE ID

Дефекты

CWE-79

Связанные уязвимости

CVE-2025-40723

nvd

7 месяцев назад

Stored Cross-Site Scripting (XSS) vulnerability in versions prior to Flatboard 3.2.2 of Flatboard Pro, consisting of a stored XSS due to lack of proper validation of user input, through the footer_text and announcement parameters in config.php.

EPSS

Процентиль: 17%

0.00056

Низкий

5.1 Medium

CVSS4

CVE ID

Дефекты

CWE-79