Описание
A vulnerability classified as problematic was found in CodeCanyon CRMGo SaaS 7.2. This vulnerability affects unknown code of the file /deal/{note_id}/note. The manipulation of the argument notes leads to cross site scripting. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used.
Ссылки
- ExploitThird Party Advisory
- Permissions Required
- Third Party Advisory
Уязвимые конфигурации
Конфигурация 1
cpe:2.3:a:workdo:crmgo_saas:7.2:*:*:*:*:*:*:*
EPSS
Процентиль: 32%
0.00127
Низкий
3.5 Low
CVSS3
5.4 Medium
CVSS3
4 Medium
CVSS2
Дефекты
CWE-79
Связанные уязвимости
CVSS3: 3.5
github
больше 1 года назад
A vulnerability classified as problematic was found in CodeCanyon CRMGo SaaS 7.2. This vulnerability affects unknown code of the file /deal/{note_id}/note. The manipulation of the argument notes leads to cross site scripting. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used.
EPSS
Процентиль: 32%
0.00127
Низкий
3.5 Low
CVSS3
5.4 Medium
CVSS3
4 Medium
CVSS2
Дефекты
CWE-79