Описание
A reflected cross-site scripting (XSS) vulnerability in tawk.to chatbox widget v4 allows attackers to execute arbitrary Javascript in the context of the user's browser via injecting a crafted payload into the vulnerable parameter.
EPSS
Процентиль: 19%
0.00059
Низкий
8.1 High
CVSS3
Дефекты
CWE-79
Связанные уязвимости
CVSS3: 8.1
github
4 месяца назад
A reflected cross-site scripting (XSS) vulnerability in tawk.to chatbox widget v4 allows attackers to execute arbitrary Javascript in the context of the user's browser via injecting a crafted payload into the vulnerable parameter.
EPSS
Процентиль: 19%
0.00059
Низкий
8.1 High
CVSS3
Дефекты
CWE-79