exploitDog

GHSA-rg5q-pmgv-7wcr

Опубликовано: 27 сент. 2023

Источник: github

Github: Не прошло ревью

CVSS3: 6.1

Описание

Cross-site scripting vulnerability in Item List page registration process of Welcart e-Commerce versions 2.7 to 2.8.21 allows a remote unauthenticated attacker to inject an arbitrary script.

Cross-site scripting vulnerability in Item List page registration process of Welcart e-Commerce versions 2.7 to 2.8.21 allows a remote unauthenticated attacker to inject an arbitrary script.

Ссылки

EPSS

Процентиль: 46%

0.00235

Низкий

6.1 Medium

CVSS3

CVE ID

Дефекты

CWE-79

Связанные уязвимости

CVE-2023-41233

CVSS3: 6.1

nvd

больше 2 лет назад

Cross-site scripting vulnerability in Item List page registration process of Welcart e-Commerce versions 2.7 to 2.8.21 allows a remote unauthenticated attacker to inject an arbitrary script.

EPSS

Процентиль: 46%

0.00235

Низкий

6.1 Medium

CVSS3

CVE ID

Дефекты

CWE-79