Описание
WeGIA is a web manager for charitable institutions. A Reflected Cross-Site Scripting (XSS) vulnerability was identified in the home.php endpoint of the WeGIA application. This vulnerability allows attackers to inject malicious scripts in the msg_c parameter. This vulnerability is fixed in 3.2.8.
Ссылки
- ExploitVendor Advisory
Уязвимые конфигурации
Конфигурация 1Версия до 3.2.8 (исключая)
cpe:2.3:a:wegia:wegia:*:*:*:*:*:*:*:*
EPSS
Процентиль: 64%
0.00469
Низкий
6.5 Medium
CVSS3
Дефекты
CWE-79
CWE-79
EPSS
Процентиль: 64%
0.00469
Низкий
6.5 Medium
CVSS3
Дефекты
CWE-79
CWE-79