Описание
Hangzhou Meisoft Information Technology Co., Ltd. FineSoft <=8.0 is affected by Cross Site Scripting (XSS) which allows remote attackers to execute arbitrary code. Enter any account and password, click Login, the page will report an error, and a controllable parameter will appear at the URL:weburl.
Ссылки
- ExploitIssue Tracking
- ExploitIssue Tracking
Уязвимые конфигурации
Конфигурация 1Версия до 8.0 (включая)
cpe:2.3:a:finesoft_project:finesoft:*:*:*:*:*:*:*:*
EPSS
Процентиль: 27%
0.00093
Низкий
6.1 Medium
CVSS3
6.3 Medium
CVSS3
Дефекты
CWE-79
CWE-79
Связанные уязвимости
CVSS3: 6.1
github
больше 1 года назад
Hangzhou Meisoft Information Technology Co., Ltd. FineSoft <=8.0 is affected by Cross Site Scripting (XSS) which allows remote attackers to execute arbitrary code. Enter any account and password, click Login, the page will report an error, and a controllable parameter will appear at the URL:weburl.
EPSS
Процентиль: 27%
0.00093
Низкий
6.1 Medium
CVSS3
6.3 Medium
CVSS3
Дефекты
CWE-79
CWE-79