exploitDog

CVE-2021-44896

Опубликовано: 01 янв. 2022

Источник: nvd

CVSS3: 6.1

CVSS2: 4.3

EPSS Низкий

Описание

DMP Roadmap before 3.0.4 allows XSS.

Ссылки

https://github.com/DMPRoadmap/roadmap/commit/0b83ad31ac01a709633080b134cfb6debc310c5e
Patch
Third Party Advisory
https://github.com/DMPRoadmap/roadmap/compare/v3.0.3...v3.0.4
Patch
Third Party Advisory
https://github.com/DMPRoadmap/roadmap/pull/3030
Patch
Third Party Advisory
https://github.com/DMPRoadmap/roadmap/commit/0b83ad31ac01a709633080b134cfb6debc310c5e
Patch
Third Party Advisory
https://github.com/DMPRoadmap/roadmap/compare/v3.0.3...v3.0.4
Patch
Third Party Advisory
https://github.com/DMPRoadmap/roadmap/pull/3030
Patch
Third Party Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:dmproadmap_project:dmproadmap:*:*:*:*:*:*:*:*

Версия до 3.0.4 (исключая)

EPSS

Процентиль: 53%

0.00307

Низкий

6.1 Medium

CVSS3

4.3 Medium

CVSS2

Дефекты

CWE-79

Связанные уязвимости

GHSA-cjwj-h2xg-7p2q

github

около 4 лет назад

DMP Roadmap before 3.0.4 allows XSS.

EPSS

Процентиль: 53%

0.00307

Низкий

6.1 Medium

CVSS3

4.3 Medium

CVSS2

Дефекты

CWE-79