exploitDog

CVE-2024-24135

Опубликовано: 29 янв. 2024

Источник: nvd

CVSS3: 6.1

EPSS Низкий

Описание

Product Name and Product Code in the 'Add Product' section of Sourcecodester Product Inventory with Export to Excel 1.0 are vulnerable to XSS attacks.

Ссылки

https://github.com/BurakSevben/2024_Product_Inventory_with_Export_to_Excel_XSS/
Exploit
Third Party Advisory
https://github.com/BurakSevben/2024_Product_Inventory_with_Export_to_Excel_XSS/
Exploit
Third Party Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:remyandrade:product_inventory_with_export_to_excel:1.0:*:*:*:*:*:*:*

EPSS

Процентиль: 73%

0.00747

Низкий

6.1 Medium

CVSS3

Дефекты

CWE-79

CWE-79

Связанные уязвимости

GHSA-f3p3-3pq5-xp8x

CVSS3: 6.1

github

около 2 лет назад

Product Name and Product Code in the 'Add Product' section of Sourcecodester Product Inventory with Export to Excel 1.0 are vulnerable to XSS attacks.

EPSS

Процентиль: 73%

0.00747

Низкий

6.1 Medium

CVSS3

Дефекты

CWE-79

CWE-79