CVE-2024-12930

Опубликовано: 26 дек. 2024

Источник: nvd

CVSS3: 3.5

CVSS3: 4.6

CVSS2: 4

EPSS Низкий

Описание

A vulnerability was found in code-projects Simple Admin Panel 1.0 and classified as problematic. This issue affects some unknown processing of the file addCatController.php. The manipulation of the argument c_name leads to cross site scripting. The attack may be initiated remotely.

Ссылки

https://code-projects.org/
Product
https://vuldb.com/?ctiid.289283
Permissions Required
VDB Entry
https://vuldb.com/?id.289283
Third Party Advisory
VDB Entry
https://vuldb.com/?submit.468121
Third Party Advisory
VDB Entry
https://code-projects.org/simple-admin-panel-in-php-with-source-code/
Product

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:code-projects:simple_admin_panel:1.0:*:*:*:*:*:*:*

EPSS

Процентиль: 26%

0.00089

Низкий

3.5 Low

CVSS3

4.6 Medium

CVSS3

4 Medium

CVSS2

Дефекты

CWE-79

Связанные уязвимости

GHSA-8fw8-q35x-6438

CVSS3: 3.5

github

около 1 года назад

EPSS

Процентиль: 26%

0.00089

Низкий

3.5 Low

CVSS3

4.6 Medium

CVSS3

4 Medium

CVSS2

Дефекты

CWE-79