exploitDog

GHSA-v887-j29p-rm67

Опубликовано: 01 мая 2022

Источник: github

Github: Не прошло ревью

Описание

Cross-site scripting (XSS) vulnerability in enter_bug.cgi in Bugzilla 2.17.1 through 2.20.4, 2.22.x before 2.22.3, and 3.x before 3.0.1 allows remote attackers to inject arbitrary web script or HTML via the buildid field in the "guided form."

Cross-site scripting (XSS) vulnerability in enter_bug.cgi in Bugzilla 2.17.1 through 2.20.4, 2.22.x before 2.22.3, and 3.x before 3.0.1 allows remote attackers to inject arbitrary web script or HTML via the buildid field in the "guided form."

Ссылки

EPSS

Процентиль: 69%

0.00632

Низкий

CVE ID

Дефекты

CWE-79

Связанные уязвимости

CVE-2007-4543

ubuntu

около 18 лет назад

Cross-site scripting (XSS) vulnerability in enter_bug.cgi in Bugzilla 2.17.1 through 2.20.4, 2.22.x before 2.22.3, and 3.x before 3.0.1 allows remote attackers to inject arbitrary web script or HTML via the buildid field in the "guided form."

CVE-2007-4543

nvd

около 18 лет назад

Cross-site scripting (XSS) vulnerability in enter_bug.cgi in Bugzilla 2.17.1 through 2.20.4, 2.22.x before 2.22.3, and 3.x before 3.0.1 allows remote attackers to inject arbitrary web script or HTML via the buildid field in the "guided form."

CVE-2007-4543

debian

около 18 лет назад

Cross-site scripting (XSS) vulnerability in enter_bug.cgi in Bugzilla ...

EPSS

Процентиль: 69%

0.00632

Низкий

CVE ID

Дефекты

CWE-79