Описание
The server for 53KF Web IM 2009 Home, Professional, and Enterprise editions relies on client-side protection mechanisms against cross-site scripting (XSS), which allows remote attackers to conduct XSS attacks by using a modified client to send a crafted IM message, related to the msg variable.
Ссылки
Уязвимые конфигурации
Конфигурация 1
Одно из
cpe:2.3:a:53kf:web_im_2009:_nil_:enterprise:*:*:*:*:*:*
cpe:2.3:a:53kf:web_im_2009:_nil_:home:*:*:*:*:*:*
cpe:2.3:a:53kf:web_im_2009:_nil_:professional:*:*:*:*:*:*
EPSS
Процентиль: 48%
0.00254
Низкий
4.3 Medium
CVSS2
Дефекты
CWE-79
Связанные уязвимости
github
почти 4 года назад
The server for 53KF Web IM 2009 Home, Professional, and Enterprise editions relies on client-side protection mechanisms against cross-site scripting (XSS), which allows remote attackers to conduct XSS attacks by using a modified client to send a crafted IM message, related to the msg variable.
EPSS
Процентиль: 48%
0.00254
Низкий
4.3 Medium
CVSS2
Дефекты
CWE-79