GHSA-m5pf-fxhf-9c22

Опубликовано: 22 янв. 2022

Источник: github

Github: Не прошло ревью

Описание

Cross site scripting (XSS) vulnerability in spotweb 1.4.9, allows authenticated attackers to execute arbitrary code via crafted GET request to the login page.

Ссылки

EPSS

Процентиль: 50%

0.00271

Низкий

CVE ID

CVE-2021-33966

Дефекты

CWE-79

Связанные уязвимости

CVE-2021-33966

CVSS3: 5.4

ubuntu

около 4 лет назад

Cross site scripting (XSS) vulnerability in spotweb 1.4.9, allows authenticated attackers to execute arbitrary code via crafted GET request to the login page.

CVE-2021-33966

CVSS3: 5.4

nvd

около 4 лет назад

Cross site scripting (XSS) vulnerability in spotweb 1.4.9, allows authenticated attackers to execute arbitrary code via crafted GET request to the login page.

CVE-2021-33966

CVSS3: 5.4

debian

около 4 лет назад

Cross site scripting (XSS) vulnerability in spotweb 1.4.9, allows auth ...

EPSS

Процентиль: 50%

0.00271

Низкий

CVE ID

CVE-2021-33966

Дефекты

CWE-79