Описание
Cross-site scripting (XSS) vulnerability in include/ajax/blogInfo.php in LiveStreet 0.2 allows remote attackers to inject arbitrary web script or HTML via the URI, as demonstrated by a SCRIPT element in an arbitrary parameter such as the asd parameter.
Уязвимые конфигурации
Конфигурация 1
cpe:2.3:a:livestreet:livestreet:0.2:*:*:*:*:*:*:*
EPSS
Процентиль: 35%
0.00142
Низкий
4.3 Medium
CVSS2
Дефекты
CWE-79
Связанные уязвимости
github
почти 4 года назад
Cross-site scripting (XSS) vulnerability in include/ajax/blogInfo.php in LiveStreet 0.2 allows remote attackers to inject arbitrary web script or HTML via the URI, as demonstrated by a SCRIPT element in an arbitrary parameter such as the asd parameter.
EPSS
Процентиль: 35%
0.00142
Низкий
4.3 Medium
CVSS2
Дефекты
CWE-79