Описание
A reflected cross-site scripting (XSS) vulnerability exists in AIBOX LLM chat (chat.aibox365.cn) through 2025-05-27, allowing attackers to hijack accounts through stolen JWT tokens.
EPSS
Процентиль: 7%
0.00027
Низкий
6.5 Medium
CVSS3
Дефекты
CWE-79
Связанные уязвимости
CVSS3: 6.5
github
7 месяцев назад
A reflected cross-site scripting (XSS) vulnerability exists in AIBOX LLM chat (chat.aibox365.cn) through 2025-05-27, allowing attackers to hijack accounts through stolen JWT tokens.
EPSS
Процентиль: 7%
0.00027
Низкий
6.5 Medium
CVSS3
Дефекты
CWE-79