exploitDog

GHSA-vcc8-v3g5-2m8c

Опубликовано: 14 мая 2022

Источник: github

Github: Не прошло ревью

CVSS3: 4.8

Описание

An issue was discovered in DiliCMS 2.4.0. There is a Stored XSS Vulnerability in the third textbox (aka site logo) of "System setting->site setting" of admin/index.php, aka site_logo.

An issue was discovered in DiliCMS 2.4.0. There is a Stored XSS Vulnerability in the third textbox (aka site logo) of "System setting->site setting" of admin/index.php, aka site_logo.

Ссылки

EPSS

Процентиль: 46%

0.00235

Низкий

4.8 Medium

CVSS3

CVE ID

Дефекты

CWE-79

Связанные уязвимости

CVE-2019-8440

CVSS3: 4.8

nvd

почти 7 лет назад

An issue was discovered in DiliCMS 2.4.0. There is a Stored XSS Vulnerability in the third textbox (aka site logo) of "System setting->site setting" of admin/index.php, aka site_logo.

EPSS

Процентиль: 46%

0.00235

Низкий

4.8 Medium

CVSS3

CVE ID

Дефекты

CWE-79