Описание
Cross-site scripting (XSS) vulnerability in Gadu-Gadu build 155 and earlier allows remote attackers to inject arbitrary web script via a URL, which is echoed in a popup window that displays a parsing error message, a different vulnerability than CVE-2004-1229.
Ссылки
Уязвимые конфигурации
Конфигурация 1
Одно из
cpe:2.3:a:gadu-gadu:gadu-gadu_instant_messenger:6.0_build149:*:*:*:*:*:*:*
cpe:2.3:a:gadu-gadu:gadu-gadu_instant_messenger:6.0_build150:*:*:*:*:*:*:*
cpe:2.3:a:gadu-gadu:gadu-gadu_instant_messenger:6.0_build151:*:*:*:*:*:*:*
cpe:2.3:a:gadu-gadu:gadu-gadu_instant_messenger:6.0_build152:*:*:*:*:*:*:*
cpe:2.3:a:gadu-gadu:gadu-gadu_instant_messenger:6.0_build153:*:*:*:*:*:*:*
cpe:2.3:a:gadu-gadu:gadu-gadu_instant_messenger:6.0_build154:*:*:*:*:*:*:*
cpe:2.3:a:gadu-gadu:gadu-gadu_instant_messenger:6.0_build155:*:*:*:*:*:*:*
EPSS
Процентиль: 63%
0.00458
Низкий
4.3 Medium
CVSS2
Дефекты
NVD-CWE-Other
Связанные уязвимости
github
больше 3 лет назад
Cross-site scripting (XSS) vulnerability in Gadu-Gadu build 155 and earlier allows remote attackers to inject arbitrary web script via a URL, which is echoed in a popup window that displays a parsing error message, a different vulnerability than CVE-2004-1229.
EPSS
Процентиль: 63%
0.00458
Низкий
4.3 Medium
CVSS2
Дефекты
NVD-CWE-Other