exploitDog

CVE-2018-11227

Опубликовано: 03 июл. 2019

Источник: nvd

CVSS3: 6.1

CVSS2: 4.3

EPSS Низкий

Описание

Monstra CMS 3.0.4 and earlier has XSS via index.php.

Ссылки

https://github.com/monstra-cms/monstra/issues
Third Party Advisory
https://github.com/monstra-cms/monstra/issues/438
Third Party Advisory
https://www.exploit-db.com/exploits/44646
Exploit
Third Party Advisory
VDB Entry
https://github.com/monstra-cms/monstra/issues
Third Party Advisory
https://github.com/monstra-cms/monstra/issues/438
Third Party Advisory
https://www.exploit-db.com/exploits/44646
Exploit
Third Party Advisory
VDB Entry

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:monstra:monstra_cms:*:*:*:*:*:*:*:*

Версия до 3.0.4 (исключая)

EPSS

Процентиль: 89%

0.04502

Низкий

6.1 Medium

CVSS3

4.3 Medium

CVSS2

Дефекты

CWE-79

Связанные уязвимости

GHSA-2cp2-mh5j-4jc9

CVSS3: 6.1

github

больше 3 лет назад

Monstra CMS before 3.0.4 has XSS via index.php.

EPSS

Процентиль: 89%

0.04502

Низкий

6.1 Medium

CVSS3

4.3 Medium

CVSS2

Дефекты

CWE-79

Уязвимость CVE-2018-11227