Количество 2
Количество 2
CVE-2023-44389
Zope is an open-source web application server. The title property, available on most Zope objects, can be used to store script code that is executed while viewing the affected object in the Zope Management Interface (ZMI). All versions of Zope 4 and Zope 5 are affected. Patches will be released with Zope versions 4.8.11 and 5.8.6.
GHSA-m755-gxxg-r5qh
Zope management interface vulnerable to stored cross site scripting via the title property
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | CVE-2023-44389 Zope is an open-source web application server. The title property, available on most Zope objects, can be used to store script code that is executed while viewing the affected object in the Zope Management Interface (ZMI). All versions of Zope 4 and Zope 5 are affected. Patches will be released with Zope versions 4.8.11 and 5.8.6. | CVSS3: 3.1 | 0% Низкий | больше 2 лет назад |
| GHSA-m755-gxxg-r5qh Zope management interface vulnerable to stored cross site scripting via the title property | CVSS3: 3.1 | 0% Низкий | больше 2 лет назад |
Уязвимостей на страницу