exploitDog

GHSA-rf44-grr9-2cf3

Опубликовано: 30 июн. 2022

Источник: github

Github: Не прошло ревью

CVSS3: 6.5

Описание

In Nagios XI through 5.8.5, in the schedule report function, an authenticated attacker is able to inject HTML tags that lead to the reformatting/editing of emails from an official email address.

In Nagios XI through 5.8.5, in the schedule report function, an authenticated attacker is able to inject HTML tags that lead to the reformatting/editing of emails from an official email address.

Ссылки

EPSS

Процентиль: 90%

0.05094

Низкий

6.5 Medium

CVSS3

CVE ID

Дефекты

CWE-74

Связанные уязвимости

CVE-2022-29269

CVSS3: 6.5

nvd

больше 3 лет назад

In Nagios XI through 5.8.5, in the schedule report function, an authenticated attacker is able to inject HTML tags that lead to the reformatting/editing of emails from an official email address.

EPSS

Процентиль: 90%

0.05094

Низкий

6.5 Medium

CVSS3

CVE ID

Дефекты

CWE-74