exploitDog

GHSA-xrv5-vhqh-hwxh

Опубликовано: 13 мар. 2025

Источник: github

Github: Не прошло ревью

CVSS3: 6.1

Описание

Cross Site Scripting vulnerability in PecanProject pecan v.1.7.2 allows a remote attacker to execute arbitrary code via the crafted payload to the hostname, sitegroupid, lat, lon and sitename parameters.

Cross Site Scripting vulnerability in PecanProject pecan v.1.7.2 allows a remote attacker to execute arbitrary code via the crafted payload to the hostname, sitegroupid, lat, lon and sitename parameters.

Ссылки

EPSS

Процентиль: 35%

0.00147

Низкий

6.1 Medium

CVSS3

CVE ID

Дефекты

CWE-79

Связанные уязвимости

CVE-2024-57348

CVSS3: 6.1

nvd

11 месяцев назад

Cross Site Scripting vulnerability in PecanProject pecan through v.1.8.0 allows a remote attacker to execute arbitrary code via the crafted payload to the hostname, sitegroupid, lat, lon and sitename parameters.

EPSS

Процентиль: 35%

0.00147

Низкий

6.1 Medium

CVSS3

CVE ID

Дефекты

CWE-79