exploitDog

GHSA-xx6x-c9h6-h6fv

Опубликовано: 26 фев. 2024

Источник: github

Github: Не прошло ревью

CVSS3: 6.1

Описание

A DOM based cross-site scripting (XSS) vulnerability in the component /beep/Beep.Instrument.js of stewdio beep.js before commit ef22ad7 allows attackers to execute arbitrary Javascript via sending a crafted URL.

A DOM based cross-site scripting (XSS) vulnerability in the component /beep/Beep.Instrument.js of stewdio beep.js before commit ef22ad7 allows attackers to execute arbitrary Javascript via sending a crafted URL.

Ссылки

EPSS

Процентиль: 37%

0.00155

Низкий

6.1 Medium

CVSS3

CVE ID

Дефекты

CWE-79

Связанные уязвимости

CVE-2024-26465

CVSS3: 6.1

nvd

больше 1 года назад

A DOM based cross-site scripting (XSS) vulnerability in the component /beep/Beep.Instrument.js of stewdio beep.js before commit ef22ad7 allows attackers to execute arbitrary Javascript via sending a crafted URL.

EPSS

Процентиль: 37%

0.00155

Низкий

6.1 Medium

CVSS3

CVE ID

Дефекты

CWE-79