Описание
Internet Starter, one of SoftCOM iKSORIS system modules, is vulnerable to Stored XSS (Cross-site Scripting) attacks. An attacker might trick a user into filling a form designed for changing user's data with a malicious script, what causes the script to run in user's context. This vulnerability has been patched in version 79.0
Ссылки
- Third Party Advisory
- Product
Уязвимые конфигурации
Конфигурация 1Версия до 79.0 (исключая)
cpe:2.3:a:softcom.wroc:iksoris:*:*:*:*:*:*:*:*
EPSS
Процентиль: 13%
0.00042
Низкий
5.4 Medium
CVSS3
Дефекты
CWE-79
Связанные уязвимости
CVSS3: 5.4
github
10 месяцев назад
Internet Starter, one of SoftCOM iKSORIS system modules, is vulnerable to Stored XSS (Cross-site Scripting) attacks. An attacker might trick a user into filling a form designed for changing user's data with a malicious script, what causes the script to run in user's context. This vulnerability has been patched in version 79.0
EPSS
Процентиль: 13%
0.00042
Низкий
5.4 Medium
CVSS3
Дефекты
CWE-79