Описание
A reflected cross-site scripting (XSS) vulnerability was discovered in Output Messenger before 2.0.63, where unsanitized input could be injected into the web application’s response. This vulnerability occurs when user-controlled input is reflected back into the browser without proper sanitization or encoding.
Ссылки
- Vendor Advisory
- Product
Уязвимые конфигурации
Конфигурация 1Версия до 2.0.63 (исключая)
cpe:2.3:a:srimax:output_messenger:*:*:*:*:*:*:*:*
EPSS
Процентиль: 14%
0.00046
Низкий
6.1 Medium
CVSS3
Дефекты
CWE-79
Связанные уязвимости
CVSS3: 6.1
github
9 месяцев назад
A reflected cross-site scripting (XSS) vulnerability was discovered in Output Messenger before 2.0.63, where unsanitized input could be injected into the web application’s response. This vulnerability occurs when user-controlled input is reflected back into the browser without proper sanitization or encoding.
EPSS
Процентиль: 14%
0.00046
Низкий
6.1 Medium
CVSS3
Дефекты
CWE-79