exploitDog

CVE-2025-22491

Опубликовано: 28 фев. 2025

Источник: nvd

CVSS3: 6.7

EPSS Низкий

Описание

The user input was not sanitized on Reporting Hierarchy Management page of Foreseer Reporting Software (FRS) application which could lead into execution of arbitrary JavaScript in a browser context for all the interacting users. This security issue has been patched in the latest version 1.5.100 of the FRS.

Ссылки

https://www.eaton.com/content/dam/eaton/company/news-insights/cybersecurity/security-bulletins/etn-va-2024-1009.pdf

EPSS

Процентиль: 10%

0.00035

Низкий

6.7 Medium

CVSS3

Дефекты

CWE-79

Связанные уязвимости

GHSA-vwph-wjvf-7mpg

CVSS3: 6.7

github

11 месяцев назад

The user input was not sanitized on Reporting Hierarchy Management page of Foreseer Reporting Software (FRS) application which could lead into execution of arbitrary JavaScript in a browser context for all the interacting users. This security issue has been patched in the latest version 1.5.100 of the FRS.

EPSS

Процентиль: 10%

0.00035

Низкий

6.7 Medium

CVSS3

Дефекты

CWE-79