exploitDog

GHSA-v7h4-hhwc-qr2c

Опубликовано: 30 апр. 2022

Источник: github

Github: Не прошло ревью

Описание

Cross-site scripting vulnerability in message.php for AeroMail before 1.45 allows remote attackers to execute Javascript as an AeroMail user via an email message with the script in the Subject line.

Cross-site scripting vulnerability in message.php for AeroMail before 1.45 allows remote attackers to execute Javascript as an AeroMail user via an email message with the script in the Subject line.

Ссылки

EPSS

Процентиль: 77%

0.0108

Низкий

CVE ID

Связанные уязвимости

CVE-2002-0411

nvd

больше 23 лет назад

Cross-site scripting vulnerability in message.php for AeroMail before 1.45 allows remote attackers to execute Javascript as an AeroMail user via an email message with the script in the Subject line.

EPSS

Процентиль: 77%

0.0108

Низкий

CVE ID