exploitDog

GHSA-px4g-wqmp-7rhq

Опубликовано: 08 сент. 2022

Источник: github

Github: Не прошло ревью

CVSS3: 6.1

Описание

Cross Site Scripting (XSS) in xiunobbs 4.0.4 allows remote attackers to execute arbitrary web script or HTML via the attachment upload function.

Cross Site Scripting (XSS) in xiunobbs 4.0.4 allows remote attackers to execute arbitrary web script or HTML via the attachment upload function.

Ссылки

EPSS

Процентиль: 53%

0.00304

Низкий

6.1 Medium

CVSS3

CVE ID

Дефекты

CWE-79

Связанные уязвимости

CVE-2020-19914

CVSS3: 6.1

nvd

больше 3 лет назад

Cross Site Scripting (XSS) in xiunobbs 4.0.4 allows remote attackers to execute arbitrary web script or HTML via the attachment upload function.

EPSS

Процентиль: 53%

0.00304

Низкий

6.1 Medium

CVSS3

CVE ID

Дефекты

CWE-79