Описание
A cross-site scripting (XSS) vulnerability in the Client Profile Update section of Mart Developers iBanking v2.0.0 allows attackers to execute arbitrary web scripts or HTML via injecting a crafted payload into the Name parameter.
Уязвимые конфигурации
Конфигурация 1
cpe:2.3:a:martmbithi:ibanking:2.0.0:*:*:*:*:*:*:*
EPSS
Процентиль: 25%
0.00084
Низкий
4.8 Medium
CVSS3
Дефекты
CWE-79
Связанные уязвимости
CVSS3: 4.8
github
11 месяцев назад
A cross-site scripting (XSS) vulnerability in the Client Profile Update section of Mart Developers iBanking v2.0.0 allows attackers to execute arbitrary web scripts or HTML via injecting a crafted payload into the Name parameter.
EPSS
Процентиль: 25%
0.00084
Низкий
4.8 Medium
CVSS3
Дефекты
CWE-79