exploitDog

CVE-2022-34991

Опубликовано: 26 июл. 2022

Источник: nvd

CVSS3: 5.4

EPSS Низкий

Описание

Paymoney v3.3 was discovered to contain multiple reflected cross-site scripting (XSS) vulnerabilities via the first_name and last_name parameters.

Ссылки

https://github.com/nu11secur1ty/CVE-nu11secur1ty/tree/main/vendors/paymoney/2022/paymoney-3.3
Exploit
Third Party Advisory
https://github.com/nu11secur1ty/CVE-nu11secur1ty/tree/main/vendors/paymoney/2022/paymoney-3.3
Exploit
Third Party Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:techvill:paymoney:3.3:*:*:*:*:*:*:*

EPSS

Процентиль: 44%

0.00213

Низкий

5.4 Medium

CVSS3

Дефекты

CWE-79

Связанные уязвимости

GHSA-vr8p-pf4j-6wrh

CVSS3: 5.4

github

больше 3 лет назад

Paymoney v3.3 was discovered to contain multiple reflected cross-site scripting (XSS) vulnerabilities via the first_name and last_name parameters.

EPSS

Процентиль: 44%

0.00213

Низкий

5.4 Medium

CVSS3

Дефекты

CWE-79