6.3 Medium
AI Score
Confidence
Low
0.006 Low
EPSS
Percentile
79.1%
w3m before 0.3.2.2 does not properly escape HTML tags in the ALT attribute of an IMG tag, which could allow remote attackers to access files or cookies.