exploitDog

GHSA-xxx5-7c7q-rc45

Опубликовано: 15 дек. 2023

Источник: github

Github: Не прошло ревью

CVSS3: 5.4

Описание

Adobe Experience Manager versions 6.5.18 and earlier are affected by a Cross-site Scripting (DOM-based XSS) vulnerability. If a low-privileged attacker is able to convince a victim to visit a URL referencing a vulnerable page, malicious JavaScript content may be executed within the context of the victim's browser.

Adobe Experience Manager versions 6.5.18 and earlier are affected by a Cross-site Scripting (DOM-based XSS) vulnerability. If a low-privileged attacker is able to convince a victim to visit a URL referencing a vulnerable page, malicious JavaScript content may be executed within the context of the victim's browser.

Ссылки

EPSS

Процентиль: 42%

0.00201

Низкий

5.4 Medium

CVSS3

CVE ID

Дефекты

CWE-79

Связанные уязвимости

CVE-2023-48474

CVSS3: 5.4

nvd

больше 1 года назад

Adobe Experience Manager versions 6.5.18 and earlier are affected by a Cross-site Scripting (DOM-based XSS) vulnerability. If a low-privileged attacker is able to convince a victim to visit a URL referencing a vulnerable page, malicious JavaScript content may be executed within the context of the victim's browser.

BDU:2024-00067

CVSS3: 5.4

fstec

больше 1 года назад

Уязвимость системы управления контентом и медиа-данными Adobe Experience Manager, связанная с непринятием мер по защите структуры веб-страницы, позволяющая нарушителю провести атаку межсайтового скриптинга (XSS)

EPSS

Процентиль: 42%

0.00201

Низкий

5.4 Medium

CVSS3

CVE ID

Дефекты

CWE-79