exploitDog

GHSA-wjpg-mm39-r6w8

Опубликовано: 10 фев. 2022

Источник: github

Github: Не прошло ревью

Описание

A vulnerability has been identified in Spectrum Power 4 (All versions < V4.70 SP9 Security Patch 1). The integrated web application "Online Help" in affected product contains a Cross-Site Scripting (XSS) vulnerability that could be exploited if unsuspecting users are tricked into accessing a malicious link.

A vulnerability has been identified in Spectrum Power 4 (All versions < V4.70 SP9 Security Patch 1). The integrated web application "Online Help" in affected product contains a Cross-Site Scripting (XSS) vulnerability that could be exploited if unsuspecting users are tricked into accessing a malicious link.

Ссылки

EPSS

Процентиль: 66%

0.00526

Низкий

CVE ID

Дефекты

CWE-79

Связанные уязвимости

CVE-2022-23312

CVSS3: 6.1

nvd

почти 4 года назад

A vulnerability has been identified in Spectrum Power 4 (All versions < V4.70 SP9 Security Patch 1). The integrated web application "Online Help" in affected product contains a Cross-Site Scripting (XSS) vulnerability that could be exploited if unsuspecting users are tricked into accessing a malicious link.

BDU:2023-03418

CVSS3: 6.1

fstec

около 4 лет назад

Уязвимость веб-сервера программного обеспечения Spectrum Power, позволяющая нарушителю осуществлять межсайтовые сценарные атаки

EPSS

Процентиль: 66%

0.00526

Низкий

CVE ID

Дефекты

CWE-79