Описание
Multiple cross-site scripting (XSS) vulnerabilities in index.cgi in the login server in University of Washington Pubcookie 3.0.0, 3.1.0, 3.1.1, 3.2 before 3.2.1b, and 3.3 before 3.3.0a allow remote attackers to inject arbitrary web script or HTML via unspecified inputs.
Ссылки
- PatchVendor Advisory
- PatchVendor Advisory
- PatchThird Party AdvisoryUS Government Resource
- PatchVendor Advisory
- PatchVendor Advisory
- PatchThird Party AdvisoryUS Government Resource
Уязвимые конфигурации
Конфигурация 1
Одно из
cpe:2.3:a:university_of_washington:pubcookie:3.0.0:*:*:*:*:*:*:*
cpe:2.3:a:university_of_washington:pubcookie:3.1.0:*:*:*:*:*:*:*
cpe:2.3:a:university_of_washington:pubcookie:3.1.1:*:*:*:*:*:*:*
cpe:2.3:a:university_of_washington:pubcookie:3.2.0:*:*:*:*:*:*:*
cpe:2.3:a:university_of_washington:pubcookie:3.2.1:*:*:*:*:*:*:*
cpe:2.3:a:university_of_washington:pubcookie:3.2.1a:*:*:*:*:*:*:*
cpe:2.3:a:university_of_washington:pubcookie:3.3.0:*:*:*:*:*:*:*
EPSS
Процентиль: 87%
0.0324
Низкий
4.3 Medium
CVSS2
Дефекты
NVD-CWE-Other
Связанные уязвимости
github
почти 4 года назад
Multiple cross-site scripting (XSS) vulnerabilities in index.cgi in the login server in University of Washington Pubcookie 3.0.0, 3.1.0, 3.1.1, 3.2 before 3.2.1b, and 3.3 before 3.3.0a allow remote attackers to inject arbitrary web script or HTML via unspecified inputs.
EPSS
Процентиль: 87%
0.0324
Низкий
4.3 Medium
CVSS2
Дефекты
NVD-CWE-Other