Описание
Sante PACS Server web portal is vulnerable to stored cross-site scripting. An attacker could inject malicious HTML codes redirecting a user to a malicious webpage and stealing the user's cookie.
Ссылки
- MitigationThird Party AdvisoryUS Government Resource
Уязвимые конфигурации
Конфигурация 1Версия до 4.2.3 (исключая)
cpe:2.3:a:santesoft:sante_pacs_server:*:*:*:*:*:*:*:*
EPSS
Процентиль: 11%
0.00039
Низкий
5.4 Medium
CVSS3
Дефекты
CWE-79
Связанные уязвимости
CVSS3: 5.4
github
6 месяцев назад
Sante PACS Server web portal is vulnerable to stored cross-site scripting. An attacker could inject malicious HTML codes redirecting a user to a malicious webpage and stealing the user's cookie.
EPSS
Процентиль: 11%
0.00039
Низкий
5.4 Medium
CVSS3
Дефекты
CWE-79