Описание
Movary is a web application to track, rate and explore your movie watch history. Due to insufficient input validation, attackers can trigger cross-site scripting payloads in versions prior to 0.70.0. The vulnerable parameter is ?categoryDeleted=. Version 0.70.0 fixes the issue.
Уязвимые конфигурации
Конфигурация 1Версия до 0.70.0 (исключая)
cpe:2.3:a:leepeuker:movary:*:*:*:*:*:*:*:*
EPSS
Процентиль: 25%
0.00088
Низкий
9.3 Critical
CVSS3
6.1 Medium
CVSS3
Дефекты
CWE-20
EPSS
Процентиль: 25%
0.00088
Низкий
9.3 Critical
CVSS3
6.1 Medium
CVSS3
Дефекты
CWE-20