exploitDog

CVE-2022-4554

Опубликовано: 24 янв. 2023

Источник: nvd

CVSS3: 5.4

EPSS Низкий

Описание

B2B Customer Ordering System developed by ID Software Project and Consultancy Services before version 1.0.0.347 has an authenticated Reflected XSS vulnerability. This has been fixed in the version 1.0.0.347.

Ссылки

https://www.usom.gov.tr/bildirim/tr-23-0022
Third Party Advisory
https://www.usom.gov.tr/bildirim/tr-23-0022
Third Party Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:idyazilim:b2b_dealer_order_system:*:*:*:*:*:*:*:*

Версия до 1.0.0.347 (исключая)

EPSS

Процентиль: 42%

0.00197

Низкий

5.4 Medium

CVSS3

Дефекты

CWE-79

CWE-79

Связанные уязвимости

GHSA-h9v6-fq4p-35pc

CVSS3: 5.4

github

около 3 лет назад

B2B Customer Ordering System developed by ID Software Project and Consultancy Services before version 1.0.0.347 has an authenticated Reflected XSS vulnerability. This has been fixed in the version 1.0.0.347.

EPSS

Процентиль: 42%

0.00197

Низкий

5.4 Medium

CVSS3

Дефекты

CWE-79

CWE-79