Описание
Cross Site Scripting (XSS) vulnerability in Lime Survey Community Edition Version v.5.3.32+220817, allows remote attackers to execute arbitrary code via the Administrator email address parameter in the General Setting function.
Ссылки
- Broken Link
- ExploitThird Party Advisory
- Broken Link
- ExploitThird Party Advisory
Уязвимые конфигурации
Конфигурация 1
cpe:2.3:a:limesurvey:limesurvey:5.3.32:220817:*:*:*:*:*:*
EPSS
Процентиль: 58%
0.00366
Низкий
6.1 Medium
CVSS3
Дефекты
CWE-79
Связанные уязвимости
CVSS3: 6.1
debian
почти 2 года назад
Cross Site Scripting (XSS) vulnerability in Lime Survey Community Edit ...
CVSS3: 6.1
github
почти 2 года назад
Cross Site Scripting (XSS) vulnerability in Lime Survey Community Edition Version v.5.3.32+220817, allows remote attackers to execute arbitrary code via the Administrator email address parameter in the General Setting function.
EPSS
Процентиль: 58%
0.00366
Низкий
6.1 Medium
CVSS3
Дефекты
CWE-79