exploitDog

CVE-2023-28873

Опубликовано: 09 дек. 2023

Источник: nvd

CVSS3: 5.4

EPSS Низкий

Описание

An XSS issue in wiki and discussion pages in Seafile 9.0.6 allows attackers to inject JavaScript into the Markdown editor.

Ссылки

https://herolab.usd.de/en/security-advisories/usd-2022-0032/
Exploit
Third Party Advisory
https://manual.seafile.com/changelog/server-changelog/#908-2022-09-07
Release Notes
https://herolab.usd.de/en/security-advisories/usd-2022-0032/
Exploit
Third Party Advisory
https://manual.seafile.com/changelog/server-changelog/#908-2022-09-07
Release Notes

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:seafile:seafile:9.0.6:*:*:*:*:*:*:*

EPSS

Процентиль: 26%

0.00088

Низкий

5.4 Medium

CVSS3

Дефекты

CWE-79

Связанные уязвимости

CVE-2023-28873

CVSS3: 5.4

debian

около 2 лет назад

An XSS issue in wiki and discussion pages in Seafile 9.0.6 allows atta ...

GHSA-vvj2-xxxq-p34c

CVSS3: 5.4

github

около 2 лет назад

An XSS issue in wiki and discussion pages in Seafile 9.0.6 allows attackers to inject JavaScript into the Markdown editor.

EPSS

Процентиль: 26%

0.00088

Низкий

5.4 Medium

CVSS3

Дефекты

CWE-79