exploitDog

GHSA-q8cq-p98h-wf2v

Опубликовано: 24 мая 2022

Источник: github

Github: Не прошло ревью

Описание

An issue was discovered in MB connect line mymbCONNECT24 and mbCONNECT24 software in all versions through V2.6.2. There is an XSS issue in the redirect.php allowing an attacker to inject code via a get parameter.

An issue was discovered in MB connect line mymbCONNECT24 and mbCONNECT24 software in all versions through V2.6.2. There is an XSS issue in the redirect.php allowing an attacker to inject code via a get parameter.

Ссылки

EPSS

Процентиль: 40%

0.00182

Низкий

CVE ID

Дефекты

CWE-79

Связанные уязвимости

CVE-2020-12530

CVSS3: 4.3

nvd

почти 5 лет назад

An issue was discovered in MB connect line mymbCONNECT24 and mbCONNECT24 software in all versions through V2.6.2. There is an XSS issue in the redirect.php allowing an attacker to inject code via a get parameter.

BDU:2021-01267

CVSS3: 4.3

fstec

почти 5 лет назад

Уязвимость промышленных система удаленного доступа mymbCONNECT24 и mbCONNECT24, позволяющая нарушителю внедрить код

EPSS

Процентиль: 40%

0.00182

Низкий

CVE ID

Дефекты

CWE-79