exploitDog - Комплексное решение для обнаружения, оценки и устранения уязвимостей.

БДУ ФСТЭК

Microsoft MSRC

NVD

Oracle ELSA

Red Hat CVE

РЕД ОС

Rocky RLSA

SUSE CVRF

Ubuntu

Debian

Github

Количество 4

CVE-2018-5249

около 8 лет назад

Cross-site scripting (XSS) vulnerability in Shaarli before 0.8.5 and 0.9.x before 0.9.3 allows remote attackers to inject arbitrary code via the login form's username field (aka the login parameter to the ban_canLogin function in index.php).

CVSS3: 6.1

EPSS: Низкий

CVE-2018-5249

около 8 лет назад

Cross-site scripting (XSS) vulnerability in Shaarli before 0.8.5 and 0.9.x before 0.9.3 allows remote attackers to inject arbitrary code via the login form's username field (aka the login parameter to the ban_canLogin function in index.php).

CVSS3: 6.1

EPSS: Низкий

CVE-2018-5249

около 8 лет назад

Cross-site scripting (XSS) vulnerability in Shaarli before 0.8.5 and 0 ...

CVSS3: 6.1

EPSS: Низкий

GHSA-43f8-j7wq-qhwm

больше 3 лет назад

Cross-site scripting (XSS) vulnerability in Shaarli before 0.8.5 and 0.9.x before 0.9.3 allows remote attackers to inject arbitrary code via the login form's username field (aka the login parameter to the ban_canLogin function in index.php).

CVSS3: 6.1

EPSS: Низкий

Уязвимостей на страницу

Уязвимость	CVSS	EPSS	Опубликовано
CVE-2018-5249 Cross-site scripting (XSS) vulnerability in Shaarli before 0.8.5 and 0.9.x before 0.9.3 allows remote attackers to inject arbitrary code via the login form's username field (aka the login parameter to the ban_canLogin function in index.php).	CVSS3: 6.1	0% Низкий	около 8 лет назад
CVE-2018-5249 Cross-site scripting (XSS) vulnerability in Shaarli before 0.8.5 and 0.9.x before 0.9.3 allows remote attackers to inject arbitrary code via the login form's username field (aka the login parameter to the ban_canLogin function in index.php).	CVSS3: 6.1	0% Низкий	около 8 лет назад
CVE-2018-5249 Cross-site scripting (XSS) vulnerability in Shaarli before 0.8.5 and 0 ...	CVSS3: 6.1	0% Низкий	около 8 лет назад
GHSA-43f8-j7wq-qhwm Cross-site scripting (XSS) vulnerability in Shaarli before 0.8.5 and 0.9.x before 0.9.3 allows remote attackers to inject arbitrary code via the login form's username field (aka the login parameter to the ban_canLogin function in index.php).	CVSS3: 6.1	0% Низкий	больше 3 лет назад

Уязвимостей на страницу