Описание
ImpressCMS 1.3.10 has XSS via the PATH_INFO to htdocs/install/index.php, htdocs/install/page_langselect.php, or htdocs/install/page_modcheck.php.
Ссылки
- ExploitThird Party AdvisoryVDB Entry
- Mailing ListThird Party Advisory
- https://www.netsparker.com/web-applications-advisories/ns-18-033-cross-site-scripting-in-impresscms/ExploitThird Party Advisory
- ExploitThird Party AdvisoryVDB Entry
- Mailing ListThird Party Advisory
- https://www.netsparker.com/web-applications-advisories/ns-18-033-cross-site-scripting-in-impresscms/ExploitThird Party Advisory
Уязвимые конфигурации
Конфигурация 1
cpe:2.3:a:impresscms:impresscms:1.3.10:*:*:*:*:*:*:*
EPSS
Процентиль: 57%
0.00347
Низкий
6.1 Medium
CVSS3
4.3 Medium
CVSS2
Дефекты
CWE-79
Связанные уязвимости
EPSS
Процентиль: 57%
0.00347
Низкий
6.1 Medium
CVSS3
4.3 Medium
CVSS2
Дефекты
CWE-79