Описание
The Tarkov Data Manager is a tool to manage the Tarkov item data. Prior to 02 January 2025, a reflected Cross Site Scripting (XSS) vulnerability in the toast notification system allows any attacker to execute arbitrary JavaScript in the context of a victim's browser session by crafting a malicious URL. A series of fix commits on 02 January 2025 fixed this and other vulnerabilities.
Ссылки
- ExploitVendor Advisory
Уязвимые конфигурации
Конфигурация 1Версия до 2025-01-02 (исключая)
cpe:2.3:a:tarkov:tarkov_data_manager:*:*:*:*:*:*:*:*
EPSS
Процентиль: 9%
0.00033
Низкий
9.3 Critical
CVSS3
6.1 Medium
CVSS3
Дефекты
CWE-79
EPSS
Процентиль: 9%
0.00033
Низкий
9.3 Critical
CVSS3
6.1 Medium
CVSS3
Дефекты
CWE-79