Описание
A Client-Side Template Injection (CSTI) vulnerability in the component /project/new/scrum of Taiga v 8.6.1 allows remote attackers to execute arbitrary code by injecting a malicious payload within the new project details.
EPSS
Процентиль: 79%
0.01221
Низкий
8 High
CVSS3
Дефекты
CWE-94
Связанные уязвимости
CVSS3: 8
github
около 1 года назад
A Client-Side Template Injection (CSTI) vulnerability in the component /project/new/scrum of Taiga v 8.6.1 allows remote attackers to execute arbitrary code by injecting a malicious payload within the new project details.
EPSS
Процентиль: 79%
0.01221
Низкий
8 High
CVSS3
Дефекты
CWE-94