exploitDog

CVE-2024-25503

Опубликовано: 04 апр. 2024

Источник: nvd

CVSS3: 4.7

EPSS Низкий

Описание

Cross Site Scripting (XSS) vulnerability in Advanced REST Client v.17.0.9 allows a remote attacker to execute arbitrary code and obtain sensitive information via a crafted script to the edit details parameter of the New Project function.

Ссылки

EPSS

Процентиль: 70%

0.0063

Низкий

4.7 Medium

CVSS3

Дефекты

CWE-79

Связанные уязвимости

GHSA-wxqf-qvrv-xr8r

CVSS3: 4.7

github

почти 2 года назад

Cross Site Scripting (XSS) vulnerability in Advanced REST Client v.17.0.9 allows a remote attacker to execute arbitrary code and obtain sensitive information via a crafted script to the edit details parameter of the New Project function.

EPSS

Процентиль: 70%

0.0063

Низкий

4.7 Medium

CVSS3

Дефекты

CWE-79