Описание
A Cross-site scripting (XSS) vulnerability in login page php code in Armex ABO.CMS 5.9 allows remote attackers to inject arbitrary web script or HTML via the login.php? URL part.
Ссылки
- Release Notes
- ExploitThird Party Advisory
- Release Notes
- ExploitThird Party Advisory
Уязвимые конфигурации
Конфигурация 1
cpe:2.3:a:abocms:abo.cms:5.9:*:*:*:*:*:*:*
EPSS
Процентиль: 46%
0.00231
Низкий
6.1 Medium
CVSS3
Дефекты
CWE-79
CWE-79
Связанные уязвимости
CVSS3: 6.1
github
около 2 лет назад
A Cross-site scripting (XSS) vulnerability in login page php code in Armex ABO.CMS 5.9 allows remote attackers to inject arbitrary web script or HTML via the login.php? URL part.
EPSS
Процентиль: 46%
0.00231
Низкий
6.1 Medium
CVSS3
Дефекты
CWE-79
CWE-79