exploitDog

GHSA-m48w-5q6f-f285

Опубликовано: 24 мая 2022

Источник: github

Github: Не прошло ревью

Описание

Stored cross-site scripting vulnerability in Admin Page of GROWI (v4.2 Series) versions from v4.2.0 to v4.2.7 allows remote authenticated attackers to inject an arbitrary script via unspecified vectors.

Stored cross-site scripting vulnerability in Admin Page of GROWI (v4.2 Series) versions from v4.2.0 to v4.2.7 allows remote authenticated attackers to inject an arbitrary script via unspecified vectors.

Ссылки

EPSS

Процентиль: 49%

0.00259

Низкий

CVE ID

Дефекты

CWE-79

Связанные уязвимости

CVE-2021-20673

CVSS3: 4.8

nvd

почти 5 лет назад

Stored cross-site scripting vulnerability in Admin Page of GROWI (v4.2 Series) versions from v4.2.0 to v4.2.7 allows remote authenticated attackers to inject an arbitrary script via unspecified vectors.

EPSS

Процентиль: 49%

0.00259

Низкий

CVE ID

Дефекты

CWE-79