Описание
Cross-site scripting (XSS) vulnerability in www/make_subset.php in PHP Font Lib before 0.3.1 allows remote attackers to inject arbitrary web script or HTML via the name parameter.
| Релиз | Статус | Примечание |
|---|---|---|
| artful | ignored | end of life |
| bionic | ignored | end of standard support, was needed |
| cosmic | ignored | end of life |
| devel | needed | |
| disco | ignored | end of life |
| eoan | ignored | end of life |
| esm-apps/bionic | needed | |
| esm-apps/focal | needed | |
| esm-apps/jammy | needed | |
| esm-apps/noble | needed |
Показывать по
10
EPSS
Процентиль: 62%
0.00422
Низкий
4.3 Medium
CVSS2
Связанные уязвимости
nvd
больше 10 лет назад
Cross-site scripting (XSS) vulnerability in www/make_subset.php in PHP Font Lib before 0.3.1 allows remote attackers to inject arbitrary web script or HTML via the name parameter.
debian
больше 10 лет назад
Cross-site scripting (XSS) vulnerability in www/make_subset.php in PHP ...
github
больше 3 лет назад
Cross-site scripting (XSS) vulnerability in www/make_subset.php in PHP Font Lib before 0.3.1 allows remote attackers to inject arbitrary web script or HTML via the name parameter.
EPSS
Процентиль: 62%
0.00422
Низкий
4.3 Medium
CVSS2