exploitDog

GHSA-q24h-xm83-9vcm

Опубликовано: 26 авг. 2025

Источник: github

Github: Не прошло ревью

CVSS3: 5.4

Описание

SelectZero Data Observability Platform before 2025.5.2 is vulnerable to HTML Injection. Legacy UI fields improperly handle user-supplied input, allowing injection of arbitrary HTML.

SelectZero Data Observability Platform before 2025.5.2 is vulnerable to HTML Injection. Legacy UI fields improperly handle user-supplied input, allowing injection of arbitrary HTML.

Ссылки

EPSS

Процентиль: 6%

0.00024

Низкий

5.4 Medium

CVSS3

CVE ID

Дефекты

CWE-79

Связанные уязвимости

CVE-2025-52217

CVSS3: 5.4

nvd

6 месяцев назад

SelectZero Data Observability Platform before 2025.5.2 is vulnerable to HTML Injection. Legacy UI fields improperly handle user-supplied input, allowing injection of arbitrary HTML.

EPSS

Процентиль: 6%

0.00024

Низкий

5.4 Medium

CVSS3

CVE ID

Дефекты

CWE-79