exploitDog

GHSA-wmgj-rj78-g9f8

Опубликовано: 17 мая 2022

Источник: github

Github: Не прошло ревью

Описание

Cross-site scripting (XSS) vulnerability in the administrative backend in Piwigo before 2.7.4 allows remote attackers to inject arbitrary web script or HTML via the page parameter to admin.php.

Cross-site scripting (XSS) vulnerability in the administrative backend in Piwigo before 2.7.4 allows remote attackers to inject arbitrary web script or HTML via the page parameter to admin.php.

Ссылки

EPSS

Процентиль: 70%

0.0062

Низкий

CVE ID

Дефекты

CWE-79

Связанные уязвимости

CVE-2015-2034

ubuntu

почти 11 лет назад

Cross-site scripting (XSS) vulnerability in the administrative backend in Piwigo before 2.7.4 allows remote attackers to inject arbitrary web script or HTML via the page parameter to admin.php.

CVE-2015-2034

nvd

почти 11 лет назад

Cross-site scripting (XSS) vulnerability in the administrative backend in Piwigo before 2.7.4 allows remote attackers to inject arbitrary web script or HTML via the page parameter to admin.php.

CVE-2015-2034

debian

почти 11 лет назад

Cross-site scripting (XSS) vulnerability in the administrative backend ...

EPSS

Процентиль: 70%

0.0062

Низкий

CVE ID

Дефекты

CWE-79