exploitDog

GHSA-mj2f-7f6m-rmcf

Опубликовано: 14 сент. 2022

Источник: github

Github: Не прошло ревью

CVSS3: 9.8

Описание

The mobile application in Transtek Mojodat FAM (Fixed Asset Management) 2.4.6 allows remote attackers to send SCRIPT tags as injected input to the API request.

The mobile application in Transtek Mojodat FAM (Fixed Asset Management) 2.4.6 allows remote attackers to send SCRIPT tags as injected input to the API request.

Ссылки

EPSS

Процентиль: 78%

0.01155

Низкий

9.8 Critical

CVSS3

CVE ID

Дефекты

CWE-89

Связанные уязвимости

CVE-2022-38771

CVSS3: 9.8

nvd

больше 3 лет назад

The mobile application in Transtek Mojodat FAM (Fixed Asset Management) 2.4.6 allows remote attackers to send SCRIPT tags as injected input to the API request.

EPSS

Процентиль: 78%

0.01155

Низкий

9.8 Critical

CVSS3

CVE ID

Дефекты

CWE-89