Количество 4
Количество 4
CVE-2021-3693
LedgerSMB does not check the origin of HTML fragments merged into the browser's DOM. By sending a specially crafted URL to an authenticated user, this flaw can be abused for remote code execution and information disclosure.
CVE-2021-3693
LedgerSMB does not check the origin of HTML fragments merged into the browser's DOM. By sending a specially crafted URL to an authenticated user, this flaw can be abused for remote code execution and information disclosure.
CVE-2021-3693
LedgerSMB does not check the origin of HTML fragments merged into the ...
GHSA-x27f-prq2-qwh6
LedgerSMB does not check the origin of HTML fragments merged into the browser's DOM. By sending a specially crafted URL to an authenticated user, this flaw can be abused for remote code execution and information disclosure.
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | CVE-2021-3693 LedgerSMB does not check the origin of HTML fragments merged into the browser's DOM. By sending a specially crafted URL to an authenticated user, this flaw can be abused for remote code execution and information disclosure. | CVSS3: 8.8 | 1% Низкий | больше 4 лет назад |
 | CVE-2021-3693 LedgerSMB does not check the origin of HTML fragments merged into the browser's DOM. By sending a specially crafted URL to an authenticated user, this flaw can be abused for remote code execution and information disclosure. | CVSS3: 8.8 | 1% Низкий | больше 4 лет назад |
| CVE-2021-3693 LedgerSMB does not check the origin of HTML fragments merged into the ... | CVSS3: 8.8 | 1% Низкий | больше 4 лет назад |
| GHSA-x27f-prq2-qwh6 LedgerSMB does not check the origin of HTML fragments merged into the browser's DOM. By sending a specially crafted URL to an authenticated user, this flaw can be abused for remote code execution and information disclosure. | 1% Низкий | больше 3 лет назад |
Уязвимостей на страницу