exploitDog

GHSA-pp9w-rwmf-7jvx

Опубликовано: 07 апр. 2023

Источник: github

Github: Не прошло ревью

CVSS3: 5.4

Описание

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Proliz OBS allows Stored XSS for an authenticated user.This issue affects OBS: before 23.04.01.

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Proliz OBS allows Stored XSS for an authenticated user.This issue affects OBS: before 23.04.01.

Ссылки

EPSS

Процентиль: 27%

0.00098

Низкий

5.4 Medium

CVSS3

CVE ID

Дефекты

CWE-79

Связанные уязвимости

CVE-2023-1726

CVSS3: 5.4

nvd

почти 3 года назад

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Proliz OBS allows Stored XSS for an authenticated user.This issue affects OBS: before 23.04.01.

EPSS

Процентиль: 27%

0.00098

Низкий

5.4 Medium

CVSS3

CVE ID

Дефекты

CWE-79