exploitDog

GHSA-vp53-8q87-xfwc

Опубликовано: 13 мая 2022

Источник: github

Github: Не прошло ревью

CVSS3: 5.4

Описание

Cross-site scripting vulnerability in baserCMS plugin Mail version 3.0.10 and earlier allows remote authenticated attackers to inject arbitrary web script or HTML via unspecified vectors.

Cross-site scripting vulnerability in baserCMS plugin Mail version 3.0.10 and earlier allows remote authenticated attackers to inject arbitrary web script or HTML via unspecified vectors.

Ссылки

EPSS

Процентиль: 46%

0.00235

Низкий

5.4 Medium

CVSS3

CVE ID

Дефекты

CWE-79

Связанные уязвимости

CVE-2016-4877

CVSS3: 5.4

nvd

больше 8 лет назад

Cross-site scripting vulnerability in baserCMS plugin Mail version 3.0.10 and earlier allows remote authenticated attackers to inject arbitrary web script or HTML via unspecified vectors.

EPSS

Процентиль: 46%

0.00235

Низкий

5.4 Medium

CVSS3

CVE ID

Дефекты

CWE-79