exploitDog

CVE-2023-46287

Опубликовано: 20 окт. 2023

Источник: nvd

CVSS3: 6.1

EPSS Низкий

Описание

XSS exists in NagVis before 1.9.38 via the select function in share/server/core/functions/html.php.

Ссылки

https://github.com/NagVis/nagvis/compare/nagvis-1.9.37...nagvis-1.9.38
Third Party Advisory
https://github.com/NagVis/nagvis/pull/356
Third Party Advisory
https://github.com/NagVis/nagvis/pull/356/commits/d660591b23e5cfea4d1be2d3fb8f3855aa6020fb
Patch
Third Party Advisory
https://github.com/NagVis/nagvis/compare/nagvis-1.9.37...nagvis-1.9.38
Third Party Advisory
https://github.com/NagVis/nagvis/pull/356
Third Party Advisory
https://github.com/NagVis/nagvis/pull/356/commits/d660591b23e5cfea4d1be2d3fb8f3855aa6020fb
Patch
Third Party Advisory
https://lists.debian.org/debian-lts-announce/2025/05/msg00000.html

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:nagvis:nagvis:*:*:*:*:*:*:*:*

Версия до 1.9.38 (исключая)

EPSS

Процентиль: 29%

0.00107

Низкий

6.1 Medium

CVSS3

Дефекты

CWE-79

Связанные уязвимости

CVE-2023-46287

CVSS3: 6.1

ubuntu

больше 2 лет назад

XSS exists in NagVis before 1.9.38 via the select function in share/server/core/functions/html.php.

CVE-2023-46287

CVSS3: 6.1

debian

больше 2 лет назад

XSS exists in NagVis before 1.9.38 via the select function in share/se ...

GHSA-v4vw-f7vp-84w3

CVSS3: 6.1

github

больше 2 лет назад

XSS exists in NagVis before 1.9.38 via the select function in share/server/core/functions/html.php.

EPSS

Процентиль: 29%

0.00107

Низкий

6.1 Medium

CVSS3

Дефекты

CWE-79