Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

nvd логотип

CVE-2024-10477

Опубликовано: 29 окт. 2024
Источник: nvd
CVSS3: 2.4
CVSS3: 5.4
CVSS2: 3.3
EPSS Низкий

Описание

A vulnerability classified as problematic was found in LinZhaoguan pb-cms up to 2.0.1. This vulnerability affects unknown code of the file /admin#permissions of the component Permission Management Page. The manipulation leads to cross site scripting. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used.

Ссылки

Уязвимые конфигурации

Конфигурация 1
cpe:2.3:a:pb-cms_project:pb-cms:*:*:*:*:*:*:*:*
Версия до 2.0.1 (включая)

EPSS

Процентиль: 34%
0.00139
Низкий

2.4 Low

CVSS3

5.4 Medium

CVSS3

3.3 Low

CVSS2

Дефекты

CWE-79

Связанные уязвимости

github логотип

GHSA-4f6q-pc62-pfpp

CVSS3: 2.4
github
больше 1 года назад

A vulnerability classified as problematic was found in LinZhaoguan pb-cms up to 2.0.1. This vulnerability affects unknown code of the file /admin#permissions of the component Permission Management Page. The manipulation leads to cross site scripting. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used.

EPSS

Процентиль: 34%
0.00139
Низкий

2.4 Low

CVSS3

5.4 Medium

CVSS3

3.3 Low

CVSS2

Дефекты

CWE-79