exploitDog

GHSA-qvcw-p624-5mqm

Опубликовано: 28 окт. 2022

Источник: github

Github: Не прошло ревью

CVSS3: 5.4

Описание

The affected product DIAEnergie (versions prior to v1.9.01.002) is vulnerable to a stored cross-site scripting vulnerability through the PutShift API.

The affected product DIAEnergie (versions prior to v1.9.01.002) is vulnerable to a stored cross-site scripting vulnerability through the PutShift API.

Ссылки

EPSS

Процентиль: 65%

0.00488

Низкий

5.4 Medium

CVSS3

CVE ID

Дефекты

CWE-79

Связанные уязвимости

CVE-2022-41701

CVSS3: 8.7

nvd

больше 3 лет назад

The affected product DIAEnergie (versions prior to v1.9.01.002) is vulnerable to a stored cross-site scripting vulnerability through the PutShift API.

EPSS

Процентиль: 65%

0.00488

Низкий

5.4 Medium

CVSS3

CVE ID

Дефекты

CWE-79