exploitDog

GHSA-qjc3-xwpq-fq98

Опубликовано: 26 авг. 2025

Источник: github

Github: Не прошло ревью

CVSS3: 7.5

Описание

SelectZero Data Observability Platform before 2025.5.2 is vulnerable to Content Spoofing / Text Injection. Improper sanitization of unspecified parameters allows attackers to inject arbitrary text or limited HTML into the login page.

SelectZero Data Observability Platform before 2025.5.2 is vulnerable to Content Spoofing / Text Injection. Improper sanitization of unspecified parameters allows attackers to inject arbitrary text or limited HTML into the login page.

Ссылки

EPSS

Процентиль: 14%

0.00045

Низкий

7.5 High

CVSS3

CVE ID

Дефекты

CWE-94

Связанные уязвимости

CVE-2025-52218

CVSS3: 7.5

nvd

6 месяцев назад

SelectZero Data Observability Platform before 2025.5.2 is vulnerable to Content Spoofing / Text Injection. Improper sanitization of unspecified parameters allows attackers to inject arbitrary text or limited HTML into the login page.

EPSS

Процентиль: 14%

0.00045

Низкий

7.5 High

CVSS3

CVE ID

Дефекты

CWE-94