Описание
Permissive Cross-domain Security Policy with Untrusted Domains vulnerability in Drupal Next.Js allows Cross-Site Scripting (XSS).This issue affects Next.Js: from 0.0.0 before 1.6.4, from 2.0.0 before 2.0.1.
EPSS
Процентиль: 8%
0.00029
Низкий
6.1 Medium
CVSS3
Дефекты
CWE-942
Связанные уязвимости
CVSS3: 6.1
github
10 дней назад
Permissive Cross-domain Security Policy with Untrusted Domains vulnerability in Drupal Next.Js allows Cross-Site Scripting (XSS).This issue affects Next.Js: from 0.0.0 before 1.6.4, from 2.0.0 before 2.0.1.
EPSS
Процентиль: 8%
0.00029
Низкий
6.1 Medium
CVSS3
Дефекты
CWE-942