Описание
Multiple persistent cross-site scripting (XSS) flaws were found in the way Aerogear handled certain user-supplied content. A remote attacker could use these flaws to compromise the application with specially crafted input.
Ссылки
- Issue TrackingVendor Advisory
- Permissions RequiredVendor Advisory
- Issue TrackingVendor Advisory
- Permissions RequiredVendor Advisory
Уязвимые конфигурации
Конфигурация 1
cpe:2.3:a:redhat:jboss_aerogear:1.0.0:*:*:*:*:*:*:*
EPSS
Процентиль: 37%
0.00156
Низкий
5.4 Medium
CVSS3
3.5 Low
CVSS2
Дефекты
CWE-79
CWE-79
Связанные уязвимости
redhat
больше 11 лет назад
Multiple persistent cross-site scripting (XSS) flaws were found in the way Aerogear handled certain user-supplied content. A remote attacker could use these flaws to compromise the application with specially crafted input.
CVSS3: 5.4
github
больше 3 лет назад
Multiple persistent cross-site scripting (XSS) flaws were found in the way Aerogear handled certain user-supplied content. A remote attacker could use these flaws to compromise the application with specially crafted input.
EPSS
Процентиль: 37%
0.00156
Низкий
5.4 Medium
CVSS3
3.5 Low
CVSS2
Дефекты
CWE-79
CWE-79