exploitDog

CVE-2025-22373

Опубликовано: 14 апр. 2025

Источник: nvd

EPSS Низкий

Описание

Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in SicommNet BASEC on SaaS allows Reflected XSS, XSS Through HTTP Query Strings, Rendering of Arbitrary HTML and alternation of CSS Styles This issue affects BASEC: from 14 Dec 2021.

Ссылки

EPSS

Процентиль: 25%

0.00084

Низкий

Дефекты

CWE-79

Связанные уязвимости

GHSA-ggp5-cmc4-x9q4

github

10 месяцев назад

Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in SicommNet BASEC on SaaS allows Reflected XSS, XSS Through HTTP Query Strings, Rendering of Arbitrary HTML and alternation of CSS Styles This issue affects BASEC: from 14 Dec 2021.

EPSS

Процентиль: 25%

0.00084

Низкий

Дефекты

CWE-79