Описание
Sante PACS Server is vulnerable to stored cross-site scripting. An attacker could inject malicious HTML codes redirecting a user to a malicious webpage and stealing the user's cookie.
Ссылки
- MitigationThird Party AdvisoryUS Government Resource
Уязвимые конфигурации
Конфигурация 1Версия до 4.2.3 (исключая)
cpe:2.3:a:santesoft:sante_pacs_server:*:*:*:*:*:*:*:*
EPSS
Процентиль: 12%
0.00039
Низкий
6.1 Medium
CVSS3
Дефекты
CWE-79
Связанные уязвимости
CVSS3: 6.1
github
6 месяцев назад
Sante PACS Server is vulnerable to stored cross-site scripting. An attacker could inject malicious HTML codes redirecting a user to a malicious webpage and stealing the user's cookie.
EPSS
Процентиль: 12%
0.00039
Низкий
6.1 Medium
CVSS3
Дефекты
CWE-79