Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

github логотип

GHSA-v5fj-hw7h-m6rg

Опубликовано: 13 мая 2022
Источник: github
Github: Не прошло ревью
CVSS3: 8.8

Описание

An issue was discovered in Western Bridge Cobub Razor 0.7.2. Authentication is not required for /index.php?/manage/channel/modifychannel. For example, with a crafted channel name, stored XSS is triggered during a later /index.php?/manage/channel request by an admin.

An issue was discovered in Western Bridge Cobub Razor 0.7.2. Authentication is not required for /index.php?/manage/channel/modifychannel. For example, with a crafted channel name, stored XSS is triggered during a later /index.php?/manage/channel request by an admin.

Ссылки

EPSS

Процентиль: 79%
0.01271
Низкий

8.8 High

CVSS3

CVE ID

CVE-2018-7746

Дефекты

CWE-352

Связанные уязвимости

nvd логотип

CVE-2018-7746

CVSS3: 8.8
nvd
почти 8 лет назад

An issue was discovered in Western Bridge Cobub Razor 0.7.2. Authentication is not required for /index.php?/manage/channel/modifychannel. For example, with a crafted channel name, stored XSS is triggered during a later /index.php?/manage/channel request by an admin.

EPSS

Процентиль: 79%
0.01271
Низкий

8.8 High

CVSS3

CVE ID

CVE-2018-7746

Дефекты

CWE-352