Количество 2
Количество 2
CVE-2021-3841
около 1 года назад
sylius/sylius versions prior to 1.9.10, 1.10.11, and 1.11.2 are vulnerable to stored cross-site scripting (XSS) through SVG files. This vulnerability allows attackers to inject malicious scripts that can be executed in the context of the user's browser.
CVSS3: 5.4
EPSS: Низкий
GHSA-hhvr-2q69-4563
около 1 года назад
Cross site scripting in sylius/sylius
CVSS3: 4.1
EPSS: Низкий
Уязвимостей на страницу
20
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | CVE-2021-3841 sylius/sylius versions prior to 1.9.10, 1.10.11, and 1.11.2 are vulnerable to stored cross-site scripting (XSS) through SVG files. This vulnerability allows attackers to inject malicious scripts that can be executed in the context of the user's browser. | CVSS3: 5.4 | 0% Низкий | около 1 года назад |
| GHSA-hhvr-2q69-4563 Cross site scripting in sylius/sylius | CVSS3: 4.1 | 0% Низкий | около 1 года назад |
Уязвимостей на страницу
20