Описание
Multiple cross-site scripting (XSS) vulnerabilities in RoboHelp 7 and 8, and RoboHelp Server 7 and 8, allow remote attackers to inject arbitrary web script or HTML via unspecified vectors, related to (1) wf_status.htm and (2) wf_topicfs.htm in RoboHTML/WildFireExt/TemplateStock/.
Ссылки
- PatchVendor Advisory
- PatchVendor Advisory
Уязвимые конфигурации
Конфигурация 1
Одно из
cpe:2.3:a:adobe:robohelp:7:*:*:*:*:*:*:*
cpe:2.3:a:adobe:robohelp:8:*:*:*:*:*:*:*
cpe:2.3:a:adobe:robohelp_server:7:*:*:*:*:*:*:*
cpe:2.3:a:adobe:robohelp_server:8:*:*:*:*:*:*:*
EPSS
Процентиль: 71%
0.00667
Низкий
4.3 Medium
CVSS2
Дефекты
CWE-79
Связанные уязвимости
github
больше 3 лет назад
Multiple cross-site scripting (XSS) vulnerabilities in RoboHelp 7 and 8, and RoboHelp Server 7 and 8, allow remote attackers to inject arbitrary web script or HTML via unspecified vectors, related to (1) wf_status.htm and (2) wf_topicfs.htm in RoboHTML/WildFireExt/TemplateStock/.
EPSS
Процентиль: 71%
0.00667
Низкий
4.3 Medium
CVSS2
Дефекты
CWE-79