exploitDog

GHSA-q3gh-3g45-67qg

Опубликовано: 24 мая 2022

Источник: github

Github: Не прошло ревью

Описание

Deskpro cloud and on-premise Deskpro 2021.1.6 and fixed in Deskpro 2021.1.7 contains a cross-site scripting (XSS) vulnerability in social media links on a user profile due to lack of input validation.

Deskpro cloud and on-premise Deskpro 2021.1.6 and fixed in Deskpro 2021.1.7 contains a cross-site scripting (XSS) vulnerability in social media links on a user profile due to lack of input validation.

Ссылки

EPSS

Процентиль: 43%

0.00206

Низкий

CVE ID

Дефекты

CWE-79

Связанные уязвимости

CVE-2021-36696

CVSS3: 5.4

nvd

больше 4 лет назад

Deskpro cloud and on-premise Deskpro 2021.1.6 and fixed in Deskpro 2021.1.7 contains a cross-site scripting (XSS) vulnerability in social media links on a user profile due to lack of input validation.

EPSS

Процентиль: 43%

0.00206

Низкий

CVE ID

Дефекты

CWE-79