exploitDog

CVE-2023-44758

Опубликовано: 06 окт. 2023

Источник: nvd

CVSS3: 5.4

EPSS Низкий

Описание

GDidees CMS 3.0 is affected by a Cross-Site Scripting (XSS) vulnerability that allows attackers to execute arbitrary code via a crafted payload to the Page Title.

Ссылки

https://github.com/sromanhu/GDidees-CMS-Stored-XSS---Title/tree/main
Exploit
Third Party Advisory
https://github.com/sromanhu/GDidees-CMS-Stored-XSS---Title/tree/main
Exploit
Third Party Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:gdidees:gdidees_cms:3.9.2:*:*:*:*:*:*:*

EPSS

Процентиль: 30%

0.00112

Низкий

5.4 Medium

CVSS3

Дефекты

CWE-79

Связанные уязвимости

GHSA-hpqh-jxqm-vm9x

CVSS3: 5.4

github

больше 2 лет назад

GDidees CMS 3.0 is affected by a Cross-Site Scripting (XSS) vulnerability that allows attackers to execute arbitrary code via a crafted payload to the Page Title.

EPSS

Процентиль: 30%

0.00112

Низкий

5.4 Medium

CVSS3

Дефекты

CWE-79