exploitDog

GHSA-r9jc-5j5w-5h63

Опубликовано: 29 дек. 2021

Источник: github

Github: Не прошло ревью

Описание

NUUO Network Video Recorder NVRsolo 3.9.1 is affected by a Cross Site Scripting (XSS) vulnerability. An attacker can steal the user's session by injecting malicious JavaScript codes which leads to session hijacking.

NUUO Network Video Recorder NVRsolo 3.9.1 is affected by a Cross Site Scripting (XSS) vulnerability. An attacker can steal the user's session by injecting malicious JavaScript codes which leads to session hijacking.

Ссылки

EPSS

Процентиль: 44%

0.0021

Низкий

CVE ID

Дефекты

CWE-79

Связанные уязвимости

CVE-2021-45812

CVSS3: 6.1

nvd

около 4 лет назад

NUUO Network Video Recorder NVRsolo 3.9.1 is affected by a Cross Site Scripting (XSS) vulnerability. An attacker can steal the user's session by injecting malicious JavaScript codes which leads to session hijacking.

EPSS

Процентиль: 44%

0.0021

Низкий

CVE ID

Дефекты

CWE-79