Опубликовано: 16 мар. 2022
Источник: ubuntu
Приоритет: medium
EPSS Низкий
CVSS2: 4.3
CVSS3: 5.4
Описание
The package @braintree/sanitize-url before 6.0.0 are vulnerable to Cross-site Scripting (XSS) due to improper sanitization in sanitizeUrl function.
| Релиз | Статус | Примечание |
|---|---|---|
| devel | DNE | |
| esm-apps/jammy | needs-triage | |
| impish | ignored | end of life |
| jammy | needs-triage | |
| kinetic | ignored | end of life, was needs-triage |
| lunar | DNE | |
| mantic | DNE | |
| noble | DNE | |
| oracular | DNE | |
| plucky | DNE |
Показывать по
10
EPSS
Процентиль: 52%
0.00291
Низкий
4.3 Medium
CVSS2
5.4 Medium
CVSS3
Связанные уязвимости
CVSS3: 5.4
redhat
почти 4 года назад
The package @braintree/sanitize-url before 6.0.0 are vulnerable to Cross-site Scripting (XSS) due to improper sanitization in sanitizeUrl function.
CVSS3: 5.4
nvd
почти 4 года назад
The package @braintree/sanitize-url before 6.0.0 are vulnerable to Cross-site Scripting (XSS) due to improper sanitization in sanitizeUrl function.
CVSS3: 5.4
debian
почти 4 года назад
The package @braintree/sanitize-url before 6.0.0 are vulnerable to Cro ...
EPSS
Процентиль: 52%
0.00291
Низкий
4.3 Medium
CVSS2
5.4 Medium
CVSS3