exploitDog

CVE-2018-18437

Опубликовано: 23 окт. 2018

Источник: nvd

CVSS3: 6.1

CVSS2: 4.3

EPSS Низкий

Описание

In AXIOS ITALIA Axioscloud Sissiweb Registro Elettronico 1.7.0, secret/relogoff.aspx has XSS via the Error_Desc parameter.

Ссылки

http://www.binaryworld.it/guidepoc.asp
Exploit
Third Party Advisory
https://www.exploit-db.com/exploits/45668/
Exploit
Third Party Advisory
VDB Entry
http://www.binaryworld.it/guidepoc.asp
Exploit
Third Party Advisory
https://www.exploit-db.com/exploits/45668/
Exploit
Third Party Advisory
VDB Entry

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:axiositalia:registro_elettronico:1.7.0:*:*:*:*:*:*:*

EPSS

Процентиль: 70%

0.00651

Низкий

6.1 Medium

CVSS3

4.3 Medium

CVSS2

Дефекты

CWE-79

Связанные уязвимости

GHSA-q6gv-wcm6-p7f5

CVSS3: 6.1

github

больше 3 лет назад

In AXIOS ITALIA Axioscloud Sissiweb Registro Elettronico 1.7.0, secret/relogoff.aspx has XSS via the Error_Desc parameter.

EPSS

Процентиль: 70%

0.00651

Низкий

6.1 Medium

CVSS3

4.3 Medium

CVSS2

Дефекты

CWE-79