exploitDog

GHSA-v9q7-j3wf-xcc9

Опубликовано: 16 авг. 2022

Источник: github

Github: Не прошло ревью

CVSS3: 5.4

Описание

Authenticated stored cross-site scripting (XSS) vulnerability in "Field Server Address" field in INTELBRAS ATA 200 Firmware 74.19.10.21 allows attackers to inject JavaScript code through a crafted payload.

Authenticated stored cross-site scripting (XSS) vulnerability in "Field Server Address" field in INTELBRAS ATA 200 Firmware 74.19.10.21 allows attackers to inject JavaScript code through a crafted payload.

Ссылки

EPSS

Процентиль: 85%

0.02459

Низкий

5.4 Medium

CVSS3

CVE ID

Дефекты

CWE-79

Связанные уязвимости

CVE-2022-24654

CVSS3: 5.4

nvd

больше 3 лет назад

Authenticated stored cross-site scripting (XSS) vulnerability in "Field Server Address" field in INTELBRAS ATA 200 Firmware 74.19.10.21 allows attackers to inject JavaScript code through a crafted payload.

EPSS

Процентиль: 85%

0.02459

Низкий

5.4 Medium

CVSS3

CVE ID

Дефекты

CWE-79