exploitDog

CVE-2022-36664

Опубликовано: 26 дек. 2022

Источник: nvd

CVSS3: 6.1

EPSS Низкий

Описание

Password Manager for IIS 2.0 has a cross-site scripting (XSS) vulnerability via the /isapi/PasswordManager.dll ResultURL parameter.

Ссылки

http://passwordmanager.adiscon.com/en/manual/
Product
https://packetstormsecurity.com/files/168599/Password-Manager-For-IIS-2.0-Cross-Site-Scripting.html
Exploit
Third Party Advisory
VDB Entry
http://passwordmanager.adiscon.com/en/manual/
Product
https://packetstormsecurity.com/files/168599/Password-Manager-For-IIS-2.0-Cross-Site-Scripting.html
Exploit
Third Party Advisory
VDB Entry

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:adiscon:password_manager_for_iis:2.0:*:*:*:*:*:*:*

EPSS

Процентиль: 86%

0.02877

Низкий

6.1 Medium

CVSS3

Дефекты

CWE-79

CWE-79

Связанные уязвимости

GHSA-9mqj-rmc8-938f

CVSS3: 6.1

github

около 3 лет назад

Password Manager for IIS 2.0 has a cross-site scripting (XSS) vulnerability via the /isapi/PasswordManager.dll ResultURL parameter.

EPSS

Процентиль: 86%

0.02877

Низкий

6.1 Medium

CVSS3

Дефекты

CWE-79

CWE-79