Количество 2
Количество 2
CVE-2017-8384
почти 9 лет назад
Craft CMS before 2.6.2976 allows XSS attacks because an array returned by HttpRequestService::getSegments() and getActionSegments() need not be zero-based. NOTE: this vulnerability exists because of an incomplete fix for CVE-2017-8052.
CVSS3: 6.1
EPSS: Низкий
GHSA-9mcw-mwxv-grwj
больше 3 лет назад
Craft CMS XSS Vulnerability
CVSS3: 6.1
EPSS: Низкий
Уязвимостей на страницу
20
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | CVE-2017-8384 Craft CMS before 2.6.2976 allows XSS attacks because an array returned by HttpRequestService::getSegments() and getActionSegments() need not be zero-based. NOTE: this vulnerability exists because of an incomplete fix for CVE-2017-8052. | CVSS3: 6.1 | 0% Низкий | почти 9 лет назад |
| GHSA-9mcw-mwxv-grwj Craft CMS XSS Vulnerability | CVSS3: 6.1 | 0% Низкий | больше 3 лет назад |
Уязвимостей на страницу
20