Описание
Cross-site scripting (XSS) vulnerability in include/sessionRegister.php in WikyBlog before 1.4.13 allows remote attackers to inject arbitrary web script or HTML, probably via vectors related to a certain data2 array element.
Ссылки
- PatchVendor Advisory
- PatchVendor Advisory
Уязвимые конфигурации
Конфигурация 1Версия до 1.4.12 (включая)
cpe:2.3:a:wikyblog:wikyblog:*:*:*:*:*:*:*:*
EPSS
Процентиль: 81%
0.016
Низкий
6.8 Medium
CVSS2
Дефекты
NVD-CWE-Other
Связанные уязвимости
github
почти 4 года назад
Cross-site scripting (XSS) vulnerability in include/sessionRegister.php in WikyBlog before 1.4.13 allows remote attackers to inject arbitrary web script or HTML, probably via vectors related to a certain data2 array element.
EPSS
Процентиль: 81%
0.016
Низкий
6.8 Medium
CVSS2
Дефекты
NVD-CWE-Other