exploitDog

CVE-2021-42584

Опубликовано: 17 дек. 2021

Источник: nvd

CVSS3: 5.4

CVSS2: 3.5

EPSS Низкий

Описание

A Stored Cross Site Scripting (XSS) issue exists in Convos-Chat before 6.32.

Ссылки

https://dev696.github.io/Writeup/
Exploit
Third Party Advisory
https://github.com/convos-chat/convos/commit/14a3b1e98cd1a3211c0ef3d4f5ffdbc60baaca54
Patch
Third Party Advisory
https://github.com/convos-chat/convos/issues/623
Exploit
Issue Tracking
Third Party Advisory
https://dev696.github.io/Writeup/
Exploit
Third Party Advisory
https://github.com/convos-chat/convos/commit/14a3b1e98cd1a3211c0ef3d4f5ffdbc60baaca54
Patch
Third Party Advisory
https://github.com/convos-chat/convos/issues/623
Exploit
Issue Tracking
Third Party Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:convos:convos:*:*:*:*:*:*:*:*

Версия до 6.32 (исключая)

EPSS

Процентиль: 49%

0.00263

Низкий

5.4 Medium

CVSS3

3.5 Low

CVSS2

Дефекты

CWE-79

Связанные уязвимости

GHSA-r3x3-fwhm-94p7

github

около 4 лет назад

A Stored Cross Site Scripting (XSS) issue exists in Convos-Chat before 6.32.

EPSS

Процентиль: 49%

0.00263

Низкий

5.4 Medium

CVSS3

3.5 Low

CVSS2

Дефекты

CWE-79