exploitDog

GHSA-vj4j-j5g4-3hfq

Опубликовано: 24 мая 2022

Источник: github

Github: Не прошло ревью

CVSS3: 6.1

Описание

An issue was discovered in the Teclib News plugin through 1.5.2 for GLPI. It allows a stored XSS attack via the $_POST['name'] parameter.

An issue was discovered in the Teclib News plugin through 1.5.2 for GLPI. It allows a stored XSS attack via the $_POST['name'] parameter.

Ссылки

EPSS

Процентиль: 53%

0.00307

Низкий

6.1 Medium

CVSS3

CVE ID

Дефекты

CWE-79

Связанные уязвимости

CVE-2019-12724

CVSS3: 6.1

nvd

больше 6 лет назад

An issue was discovered in the Teclib News plugin through 1.5.2 for GLPI. It allows a stored XSS attack via the $_POST['name'] parameter.

EPSS

Процентиль: 53%

0.00307

Низкий

6.1 Medium

CVSS3

CVE ID

Дефекты

CWE-79