Описание
code-projects Document Management System 1.0 has a Cross Site Scripting (XSS) vulnerability, where attackers can leak admin's cookie information by entering malicious XSS code in the Company field when adding files.
Ссылки
- Broken Link
- Issue TrackingThird Party Advisory
- Issue TrackingThird Party Advisory
Уязвимые конфигурации
Конфигурация 1
cpe:2.3:a:fabian:document_management_system:1.0:*:*:*:*:*:*:*
EPSS
Процентиль: 8%
0.00031
Низкий
5.4 Medium
CVSS3
Дефекты
CWE-79
Связанные уязвимости
CVSS3: 5.4
github
около 2 месяцев назад
code-projects Document Management System 1.0 has a Cross Site Scripting (XSS) vulnerability, where attackers can leak admin's cookie information by entering malicious XSS code in the Company field when adding files.
EPSS
Процентиль: 8%
0.00031
Низкий
5.4 Medium
CVSS3
Дефекты
CWE-79