exploitDog

CVE-2024-27593

Опубликовано: 15 мая 2024

Источник: nvd

CVSS3: 5.4

EPSS Низкий

Описание

A stored cross-site scripting (XSS) vulnerability in the Filter function of Eramba Version 3.22.3 Community Edition allows authenticated attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the filter name field. This vulnerability has been fixed in version 3.23.0.

Ссылки

EPSS

Процентиль: 44%

0.00215

Низкий

5.4 Medium

CVSS3

Дефекты

CWE-79

Связанные уязвимости

GHSA-57h3-6mh3-cjrr

CVSS3: 5.4

github

больше 1 года назад

A stored cross-site scripting (XSS) vulnerability in the Filter function of Eramba Version 3.22.3 Community Edition allows authenticated attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the filter name field. This vulnerability has been fixed in version 3.23.0.

EPSS

Процентиль: 44%

0.00215

Низкий

5.4 Medium

CVSS3

Дефекты

CWE-79