Описание
Stored cross-site scripting vulnerability in SHIRASAGI versions prior to v1.16.2 allows a remote authenticated attacker with an administrative privilege to inject an arbitrary script.
Ссылки
- ProductThird Party Advisory
- Third Party Advisory
- ProductVendor Advisory
- ExploitPatchVendor Advisory
- ProductThird Party Advisory
- Third Party Advisory
- ProductVendor Advisory
- ExploitPatchVendor Advisory
Уязвимые конфигурации
Конфигурация 1Версия до 1.16.2 (исключая)
cpe:2.3:a:ss-proj:shirasagi:*:*:*:*:*:*:*:*
EPSS
Процентиль: 49%
0.00257
Низкий
5.4 Medium
CVSS3
Дефекты
CWE-79
CWE-79
Связанные уязвимости
CVSS3: 5.4
github
около 3 лет назад
Stored cross-site scripting vulnerability in SHIRASAGI versions prior to v1.16.2 allows a remote authenticated attacker with an administrative privilege to inject an arbitrary script.
EPSS
Процентиль: 49%
0.00257
Низкий
5.4 Medium
CVSS3
Дефекты
CWE-79
CWE-79