exploitDog

CVE-2023-50470

Опубликовано: 28 дек. 2023

Источник: nvd

CVSS3: 5.4

EPSS Низкий

Описание

A cross-site scripting (XSS) vulnerability in the component admin_ Video.php of SeaCMS v12.8 allows attackers to execute arbitrary web scripts or HTML via a crafted payload.

Ссылки

http://seacms.com
Product
https://blog.csdn.net/weixin_72610998/article/details/134784075?spm=1001.2014.3001.5502
Exploit
Third Party Advisory
https://www.seacms.net/
Product
http://seacms.com
Product
https://blog.csdn.net/weixin_72610998/article/details/134784075?spm=1001.2014.3001.5502
Exploit
Third Party Advisory
https://www.seacms.net/
Product

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:seacms:seacms:12.8:*:*:*:*:*:*:*

EPSS

Процентиль: 43%

0.00207

Низкий

5.4 Medium

CVSS3

Дефекты

CWE-79

Связанные уязвимости

GHSA-6w7f-vrx5-q78q

CVSS3: 5.4

github

около 2 лет назад

A cross-site scripting (XSS) vulnerability in the component admin_ Video.php of SeaCMS v12.8 allows attackers to execute arbitrary web scripts or HTML via a crafted payload.

EPSS

Процентиль: 43%

0.00207

Низкий

5.4 Medium

CVSS3

Дефекты

CWE-79