exploitDog

CVE-2022-30519

Опубликовано: 29 дек. 2022

Источник: nvd

CVSS3: 6.1

EPSS Низкий

Описание

XSS in signing form in Reprise Software RLM License Administration v14.2BL4 allows remote attacker to inject arbitrary code via password field.

Ссылки

http://packetstormsecurity.com/files/171627/Reprise-Software-RLM-14.2BL4-Cross-Site-Scripting.html
Exploit
Third Party Advisory
VDB Entry
https://github.com/earth2sky/Disclosed/blob/main/CVE-2022-30519
Third Party Advisory
http://packetstormsecurity.com/files/171627/Reprise-Software-RLM-14.2BL4-Cross-Site-Scripting.html
Exploit
Third Party Advisory
VDB Entry
https://github.com/earth2sky/Disclosed/blob/main/CVE-2022-30519
Third Party Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:reprisesoftware:reprise_license_manager:*:*:*:*:*:*:*:*

Версия от 14.2bl4 (включая) до 16.0 (включая)

EPSS

Процентиль: 83%

0.02031

Низкий

6.1 Medium

CVSS3

Дефекты

CWE-79

CWE-79

Связанные уязвимости

GHSA-6hgw-f77h-gx4f

CVSS3: 6.1

github

около 3 лет назад

XSS in signing form in Reprise Software RLM License Administration v14.2BL4 allows remote attacker to inject arbitrary code via password field.

EPSS

Процентиль: 83%

0.02031

Низкий

6.1 Medium

CVSS3

Дефекты

CWE-79

CWE-79