exploitDog

CVE-2023-46952

Опубликовано: 17 янв. 2024

Источник: nvd

CVSS3: 6.1

EPSS Низкий

Описание

Cross Site Scripting vulnerability in ABO.CMS v.5.9.3 allows an attacker to execute arbitrary code via a crafted payload to the Referer header.

Ссылки

http://abo.com
Not Applicable
http://abocms.com
Product
https://github.com/SadFox/ABO.CMS-Blind-XSS
Exploit
Third Party Advisory
http://abo.com
Not Applicable
http://abocms.com
Product
https://github.com/SadFox/ABO.CMS-Blind-XSS
Exploit
Third Party Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:abocms:abo.cms:5.9.3:*:*:*:*:*:*:*

EPSS

Процентиль: 34%

0.00135

Низкий

6.1 Medium

CVSS3

Дефекты

CWE-79

CWE-79

Связанные уязвимости

GHSA-m45w-qgh5-r75j

CVSS3: 6.1

github

около 2 лет назад

Cross Site Scripting vulnerability in ABO.CMS v.5.9.3 allows an attacker to execute arbitrary code via a crafted payload to the Referer header.

EPSS

Процентиль: 34%

0.00135

Низкий

6.1 Medium

CVSS3

Дефекты

CWE-79

CWE-79