exploitDog

GHSA-vq6f-hwm4-jp2v

Опубликовано: 17 мая 2023

Источник: github

Github: Не прошло ревью

CVSS3: 9

Описание

Cross Site Scripting (XSS) in the edit user form in Microworld Technologies eScan management console 14.0.1400.2281 allows remote attacker to inject arbitrary code via the from parameter.

Cross Site Scripting (XSS) in the edit user form in Microworld Technologies eScan management console 14.0.1400.2281 allows remote attacker to inject arbitrary code via the from parameter.

Ссылки

EPSS

Процентиль: 79%

0.01316

Низкий

9 Critical

CVSS3

CVE ID

Дефекты

CWE-79

Связанные уязвимости

CVE-2023-31703

CVSS3: 9

nvd

больше 2 лет назад

Cross Site Scripting (XSS) in the edit user form in Microworld Technologies eScan management console 14.0.1400.2281 allows remote attacker to inject arbitrary code via the from parameter.

EPSS

Процентиль: 79%

0.01316

Низкий

9 Critical

CVSS3

CVE ID

Дефекты

CWE-79