exploitDog

GHSA-x24g-hxf6-p2f9

Опубликовано: 16 сент. 2023

Источник: github

Github: Не прошло ревью

CVSS3: 5.4

Описание

Multiple stored cross-site scripting (XSS) vulnerabilities in Usermin 2.000 allow remote attackers to inject arbitrary web script or HTML via the folder name parameter while creating the folder to manage the folder tab, filter tab, and forward mail tab.

Multiple stored cross-site scripting (XSS) vulnerabilities in Usermin 2.000 allow remote attackers to inject arbitrary web script or HTML via the folder name parameter while creating the folder to manage the folder tab, filter tab, and forward mail tab.

Ссылки

EPSS

Процентиль: 31%

0.00115

Низкий

5.4 Medium

CVSS3

CVE ID

Дефекты

CWE-79

Связанные уязвимости

CVE-2023-41157

CVSS3: 5.4

nvd

больше 2 лет назад

Multiple stored cross-site scripting (XSS) vulnerabilities in Usermin 2.000 allow remote attackers to inject arbitrary web script or HTML via the folder name parameter while creating the folder to manage the folder tab, filter tab, and forward mail tab.

EPSS

Процентиль: 31%

0.00115

Низкий

5.4 Medium

CVSS3

CVE ID

Дефекты

CWE-79