Описание
GeniXCMS 1.0.2 has XSS triggered by an authenticated user who submits a page, as demonstrated by a crafted oncut attribute in a B element.
Ссылки
- Issue TrackingPatchThird Party Advisory
- Issue TrackingPatchThird Party Advisory
Уязвимые конфигурации
Конфигурация 1
cpe:2.3:a:genixcms:genixcms:1.0.2:*:*:*:*:*:*:*
EPSS
Процентиль: 54%
0.00315
Низкий
5.4 Medium
CVSS3
3.5 Low
CVSS2
Дефекты
CWE-79
Связанные уязвимости
EPSS
Процентиль: 54%
0.00315
Низкий
5.4 Medium
CVSS3
3.5 Low
CVSS2
Дефекты
CWE-79