exploitDog

GHSA-wr7p-c6qf-9585

Опубликовано: 03 дек. 2025

Источник: github

Github: Не прошло ревью

CVSS3: 5.5

Описание

Cross Site Scripting vulnerability in HCL Technologies Limited HCLTech DRAGON before v.7.6.0 allows a remote attacker to execute arbitrary code via missing directives

Cross Site Scripting vulnerability in HCL Technologies Limited HCLTech DRAGON before v.7.6.0 allows a remote attacker to execute arbitrary code via missing directives

Ссылки

EPSS

Процентиль: 50%

0.00268

Низкий

5.5 Medium

CVSS3

CVE ID

Дефекты

CWE-79

Связанные уязвимости

CVE-2025-63401

CVSS3: 5.5

nvd

2 месяца назад

Cross Site Scripting vulnerability in HCL Technologies Limited HCLTech DRAGON before v.7.6.0 allows a remote attacker to execute arbitrary code via missing directives

EPSS

Процентиль: 50%

0.00268

Низкий

5.5 Medium

CVSS3

CVE ID

Дефекты

CWE-79