Описание
FeehiCMS v2.1.1 was discovered to contain a cross-site scripting (XSS) vulnerability via a crafted payload injected into the Comment box under the Single Page module.
Ссылки
- ExploitIssue TrackingThird Party Advisory
- ExploitIssue TrackingThird Party Advisory
Уязвимые конфигурации
Конфигурация 1
cpe:2.3:a:feehi:feehicms:2.1.1:*:*:*:*:*:*:*
EPSS
Процентиль: 52%
0.00285
Низкий
5.4 Medium
CVSS3
Дефекты
CWE-79
CWE-79
Связанные уязвимости
CVSS3: 5.4
github
больше 3 лет назад
FeehiCMS vulnerable to Cross-Site scripting via crafted payload
EPSS
Процентиль: 52%
0.00285
Низкий
5.4 Medium
CVSS3
Дефекты
CWE-79
CWE-79