Описание
Cross-site scripting vulnerability in Proxomitron Naoko-4 BetaFour and earlier allows remote attackers to execute arbitrary script on other clients via an incorrect URL containing the malicious script, which is printed back in an error message.
Ссылки
- PatchVendor Advisory
- ExploitPatchVendor Advisory
- PatchVendor Advisory
- ExploitPatchVendor Advisory
Уязвимые конфигурации
Конфигурация 1
Одно из
cpe:2.3:a:scott_r._lemmon:proxomitron_naoko-4:beta1:*:*:*:*:*:*:*
cpe:2.3:a:scott_r._lemmon:proxomitron_naoko-4:beta2:*:*:*:*:*:*:*
cpe:2.3:a:scott_r._lemmon:proxomitron_naoko-4:beta3:*:*:*:*:*:*:*
cpe:2.3:a:scott_r._lemmon:proxomitron_naoko-4:beta4:*:*:*:*:*:*:*
EPSS
Процентиль: 95%
0.16578
Средний
7.5 High
CVSS2
Дефекты
NVD-CWE-Other
Связанные уязвимости
github
больше 3 лет назад
Cross-site scripting vulnerability in Proxomitron Naoko-4 BetaFour and earlier allows remote attackers to execute arbitrary script on other clients via an incorrect URL containing the malicious script, which is printed back in an error message.
EPSS
Процентиль: 95%
0.16578
Средний
7.5 High
CVSS2
Дефекты
NVD-CWE-Other