Описание
Heimdall Application Dashboard through 2.5.4 allows reflected and stored XSS via "Application name" to the "Add application" page. The stored XSS will be triggered in the "Application list" page.
Ссылки
- ExploitIssue TrackingThird Party Advisory
- Third Party Advisory
- ExploitIssue TrackingThird Party Advisory
- Third Party Advisory
Уязвимые конфигурации
Конфигурация 1Версия до 2.5.4 (включая)
cpe:2.3:a:linuxserver:heimdall_application_dashboard:*:*:*:*:*:*:*:*
EPSS
Процентиль: 42%
0.00198
Низкий
5.4 Medium
CVSS3
Дефекты
CWE-79
CWE-79
Связанные уязвимости
CVSS3: 5.4
github
около 3 лет назад
Heimdall Application Dashboard through 2.5.4 allows reflected XSS via "Application name" to the "Add application" page.
EPSS
Процентиль: 42%
0.00198
Низкий
5.4 Medium
CVSS3
Дефекты
CWE-79
CWE-79