exploitDog

CVE-2025-60936

Опубликовано: 24 окт. 2025

Источник: nvd

CVSS3: 6.1

EPSS Низкий

Описание

Emoncms 11.7.3 is vulnerable to Cross Site in the input handling mechanism. This vulnerability allows authenticated attackers with API access to inject malicious JavaScript code that executes when administrators view the application logs.

Ссылки

https://github.com/emoncms/emoncms/issues/1940
Exploit
Issue Tracking
Third Party Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:openenergymonitor:emoncms:11.7.3:*:*:*:*:*:*:*

EPSS

Процентиль: 14%

0.00047

Низкий

6.1 Medium

CVSS3

Дефекты

CWE-79

Связанные уязвимости

GHSA-r2f6-mm34-mhfx

CVSS3: 6.1

github

4 месяца назад

Emoncms 11.7.3 is vulnerable to Cross Site in the input handling mechanism. This vulnerability allows authenticated attackers with API access to inject malicious JavaScript code that executes when administrators view the application logs.

EPSS

Процентиль: 14%

0.00047

Низкий

6.1 Medium

CVSS3

Дефекты

CWE-79