Описание
A Stored Cross Site Scripting (XSS) vulnerability was found in the Application Server of Desktop Alert PingAlert version 6.1.0.11 to 6.1.1.2 which allows an attacker to hijack user’s browser, capturing sensitive information.
Ссылки
- Product
- Vendor Advisory
Уязвимые конфигурации
Конфигурация 1Версия от 6.1.0.11 (включая) до 6.1.1.4 (исключая)
cpe:2.3:a:desktopalert:pingalert_application_server:*:*:*:*:*:*:*:*
EPSS
Процентиль: 14%
0.00047
Низкий
6.5 Medium
CVSS3
Дефекты
CWE-80
Связанные уязвимости
CVSS3: 6.5
github
3 месяца назад
A Stored Cross Site Scripting (XSS) vulnerability was found in the Application Server of Desktop Alert PingAlert version 6.1.0.11 to 6.1.1.2 which allows an attacker to hijack user’s browser, capturing sensitive information.
EPSS
Процентиль: 14%
0.00047
Низкий
6.5 Medium
CVSS3
Дефекты
CWE-80