exploitDog - Комплексное решение для обнаружения, оценки и устранения уязвимостей.

БДУ ФСТЭК

Microsoft MSRC

NVD

Oracle ELSA

Red Hat CVE

РЕД ОС

Rocky RLSA

SUSE CVRF

Ubuntu

Debian

Github

Количество 2

CVE-2025-47204

9 месяцев назад

An issue was discovered in post.php in bootstrap-multiselect (aka Bootstrap Multiselect) 1.1.2. A PHP script in the source code echoes arbitrary POST data. If a developer adopts this structure wholesale in a live application, it could create a Reflective Cross-Site Scripting (XSS) vulnerability exploitable through Cross-Site Request Forgery (CSRF).

CVSS3: 6.1

EPSS: Низкий

GHSA-gv5r-9gxr-v74w

9 месяцев назад

Bootstrap Multiselect Vulnerable to CSRF and Reflective XSS via Arbitrary POST Data

CVSS3: 6.1

EPSS: Низкий

Уязвимостей на страницу

	Уязвимость	CVSS	EPSS	Опубликовано
	CVE-2025-47204 An issue was discovered in post.php in bootstrap-multiselect (aka Bootstrap Multiselect) 1.1.2. A PHP script in the source code echoes arbitrary POST data. If a developer adopts this structure wholesale in a live application, it could create a Reflective Cross-Site Scripting (XSS) vulnerability exploitable through Cross-Site Request Forgery (CSRF).	CVSS3: 6.1	1% Низкий	9 месяцев назад
	GHSA-gv5r-9gxr-v74w Bootstrap Multiselect Vulnerable to CSRF and Reflective XSS via Arbitrary POST Data	CVSS3: 6.1	1% Низкий	9 месяцев назад

Уязвимостей на страницу