exploitDog

CVE-2020-29364

Опубликовано: 30 нояб. 2020

Источник: nvd

CVSS3: 4.8

CVSS2: 3.5

EPSS Низкий

Описание

In NetArt News Lister 1.0.0, the news headlines vulnerable to stored xss attacks. Attackers can inject codes in news titles.

Ссылки

https://github.com/aslanemre/CVE-2020-29364/blob/main/CVE-2020-29364
Exploit
Third Party Advisory
https://www.netartmedia.net/newslister
Product
Vendor Advisory
https://github.com/aslanemre/CVE-2020-29364/blob/main/CVE-2020-29364
Exploit
Third Party Advisory
https://www.netartmedia.net/newslister
Product
Vendor Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:netartmedia:news_lister:1.0.0:*:*:*:*:*:*:*

EPSS

Процентиль: 55%

0.0032

Низкий

4.8 Medium

CVSS3

3.5 Low

CVSS2

Дефекты

CWE-79

Связанные уязвимости

GHSA-7v67-cgqp-fx55

github

больше 3 лет назад

In NetArt News Lister 1.0.0, the news headlines vulnerable to stored xss attacks. Attackers can inject codes in news titles.

EPSS

Процентиль: 55%

0.0032

Низкий

4.8 Medium

CVSS3

3.5 Low

CVSS2

Дефекты

CWE-79