Описание
Monstra CMS 1.6 allows XSS via an uploaded SVG document to the admin/index.php?id=filesmanager&path=uploads/ URI. NOTE: this is a discontinued product.
Ссылки
- ExploitThird Party Advisory
- ExploitThird Party Advisory
Уязвимые конфигурации
Конфигурация 1
cpe:2.3:a:monstra:monstra_cms:1.6:*:*:*:*:*:*:*
EPSS
Процентиль: 57%
0.00353
Низкий
5.4 Medium
CVSS3
3.5 Low
CVSS2
Дефекты
CWE-79
Связанные уязвимости
github
около 3 лет назад
Monstra CMS 1.6 allows XSS via an uploaded SVG document to the admin/index.php?id=filesmanager&path=uploads/ URI. NOTE: this is a discontinued product.
EPSS
Процентиль: 57%
0.00353
Низкий
5.4 Medium
CVSS3
3.5 Low
CVSS2
Дефекты
CWE-79