← volver
CVE-2022-4353

LinZhaoguan pb-cms IpUtil.getIpAddr cross site scripting

CVSS 3.5 LOWEPSS 0.4%CWE-707
Vexday Risk Score
8Bajo
Decisión SSVC (CISA)
Track
Sin señal de explotación → monitorear
CVSS 3.5EPSS 0.4%KEV nãoPoC Nuclei Metasploit Patch
Ciclo de vida
08 dic 2022Publicada en NVD
Recomendación: Monitorear — sin señal de explotación por ahora.
A vulnerability has been found in LinZhaoguan pb-cms 2.0 and classified as problematic. Affected by this vulnerability is the function IpUtil.getIpAddr. The manipulation leads to cross site scripting. The attack can be launched remotely. The exploit has been disclosed to the public and may be used. The identifier VDB-215113 was assigned to this vulnerability.
CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:N/I:L/A:N
Productos afectados
LinZhaoguan · pb-cms

¿Quieres saber si tu infraestructura está expuesta a esto?

Hablar con TrueHacking →
Referencias
https://gitee.com/LinZhaoguan/pb-cms/issues/I52422https://vuldb.com/?id.215113