Lucene search
@huntrdevCVELIST:CVE-2023-5892HistoryNov 01, 2023 - 12:00 a.m.
CVE-2023-5892 Cross-site Scripting (XSS) - Stored in pkp/pkp-lib
2023-11-0100:00:18
CWE-79
@huntrdev
www.cve.org
3
cross-site scripting
stored
github repository
CVSS3
5.4
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
LOW
Integrity Impact
LOW
Availability Impact
NONE
CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N
EPSS
0
Percentile
14.0%
Cross-site Scripting (XSS) - Stored in GitHub repository pkp/pkp-lib prior to 3.3.0-16.
CNA Affected
[
{
"vendor": "pkp",
"product": "pkp/pkp-lib",
"versions": [
{
"version": "unspecified",
"lessThan": "3.3.0-16",
"status": "affected",
"versionType": "custom"
}
]
}
]Related
osv
osv
CVE-2023-5892
2023-11-01 01:15:07
huntr
huntr
Stored XSS in function Add discussion at the Copyediting section
2023-10-08 18:37:37
prion
prion
Cross site scripting
2023-11-01 01:15:00
nvd
nvd
CVE-2023-5892
2023-11-01 01:15:07
cve
cve
CVE-2023-5892
2023-11-01 01:15:07
CVSS3
5.4
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
LOW
Integrity Impact
LOW
Availability Impact
NONE
CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N
EPSS
0
Percentile
14.0%
Related for CVELIST:CVE-2023-5892