Описание
The built-in XY Chart plugin is vulnerable to a DOM XSS vulnerability. A user with Editor permissions is able to modify such a panel in order to make it execute arbitrary JavaScript.
Ссылки
EPSS
Процентиль: 10%
0.00035
Низкий
6.8 Medium
CVSS3
Дефекты
CWE-79
Связанные уязвимости
CVSS3: 6.8
github
5 дней назад
The built-in XY Chart plugin is vulnerable to a DOM XSS vulnerability. A user with Editor permissions is able to modify such a panel in order to make it execute arbitrary JavaScript.
EPSS
Процентиль: 10%
0.00035
Низкий
6.8 Medium
CVSS3
Дефекты
CWE-79