Описание
Legrand BTicino Driver Manager F454 1.0.51 contains multiple web vulnerabilities that allow attackers to perform administrative actions without proper request validation. Attackers can exploit cross-site request forgery to change passwords and inject stored cross-site scripting payloads through unvalidated GET parameters.
Ссылки
EPSS
Процентиль: 10%
0.00034
Низкий
5.3 Medium
CVSS3
Дефекты
CWE-79
Связанные уязвимости
CVSS3: 5.3
github
около 1 месяца назад
Legrand BTicino Driver Manager F454 1.0.51 contains multiple web vulnerabilities that allow attackers to perform administrative actions without proper request validation. Attackers can exploit cross-site request forgery to change passwords and inject stored cross-site scripting payloads through unvalidated GET parameters.
EPSS
Процентиль: 10%
0.00034
Низкий
5.3 Medium
CVSS3
Дефекты
CWE-79