Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

nvd логотип

CVE-2021-26263

Опубликовано: 25 апр. 2023
Источник: nvd
CVSS3: 7.5
CVSS3: 6.1
EPSS Низкий

Описание

Cross-site scripting (XSS) issue in Discuss app of Odoo Community 14.0 through 15.0, and Odoo Enterprise 14.0 through 15.0, allows remote attackers to inject arbitrary web script in the browser of a victim, by posting crafted contents.

Ссылки

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:a:odoo:odoo:14.0:*:*:*:community:*:*:*
cpe:2.3:a:odoo:odoo:14.0:*:*:*:enterprise:*:*:*
cpe:2.3:a:odoo:odoo:15.0:*:*:*:community:*:*:*
cpe:2.3:a:odoo:odoo:15.0:*:*:*:enterprise:*:*:*

EPSS

Процентиль: 33%
0.0013
Низкий

7.5 High

CVSS3

6.1 Medium

CVSS3

Дефекты

CWE-79
CWE-79

Связанные уязвимости

ubuntu логотип

CVE-2021-26263

CVSS3: 6.1
ubuntu
почти 3 года назад

Cross-site scripting (XSS) issue in Discuss app of Odoo Community 14.0 through 15.0, and Odoo Enterprise 14.0 through 15.0, allows remote attackers to inject arbitrary web script in the browser of a victim, by posting crafted contents.

debian логотип

CVE-2021-26263

CVSS3: 6.1
debian
почти 3 года назад

Cross-site scripting (XSS) issue in Discuss app of Odoo Community 14.0 ...

github логотип

GHSA-mhqq-4cm6-w4w2

CVSS3: 7.5
github
почти 3 года назад

Cross-site scripting (XSS) issue in Discuss app of Odoo Community 14.0 through 15.0, and Odoo Enterprise 14.0 through 15.0, allows remote attackers to inject arbitrary web script in the browser of a victim, by posting crafted contents.

EPSS

Процентиль: 33%
0.0013
Низкий

7.5 High

CVSS3

6.1 Medium

CVSS3

Дефекты

CWE-79
CWE-79