exploitDog

CVE-2023-3726

Опубликовано: 04 янв. 2024

Источник: nvd

CVSS3: 6.9

EPSS Низкий

Описание

OCSInventory allow stored email template with special characters that lead to a Stored cross-site Scripting.

Ссылки

https://fluidattacks.com/advisories/creed/
Exploit
Third Party Advisory
https://ocsinventory-ng.org/
Product
https://fluidattacks.com/advisories/creed/
Exploit
Third Party Advisory
https://ocsinventory-ng.org/
Product

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:ocsinventory-ng:ocsinventory-ocsreports:2.12.0:*:*:*:*:*:*:*

EPSS

Процентиль: 19%

0.00059

Низкий

6.9 Medium

CVSS3

Дефекты

CWE-79

Связанные уязвимости

CVE-2023-3726

CVSS3: 6.9

ubuntu

около 2 лет назад

OCSInventory allow stored email template with special characters that lead to a Stored cross-site Scripting.

CVE-2023-3726

CVSS3: 6.9

debian

около 2 лет назад

OCSInventory allow stored email template with special characters that ...

GHSA-vrmh-7wgx-mjw7

CVSS3: 4.9

github

около 2 лет назад

OCSInventory allow stored email template with special characters that lead to a Stored cross-site Scripting.

EPSS

Процентиль: 19%

0.00059

Низкий

6.9 Medium

CVSS3

Дефекты

CWE-79