Lucene search
GitHub Advisory DatabaseGHSA-64CM-3CJ3-67HFHistoryMay 07, 2024 - 6:30 p.m.
MS Basic Cross-site Scripting vulnerability
2024-05-0718:30:33
CWE-79
GitHub Advisory Database
github.com
4
cross-site scripting
mvnrepository
ms basic
search function
software
4.1 Medium
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
REQUIRED
Scope
CHANGED
Confidentiality Impact
NONE
Integrity Impact
LOW
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:N/I:L/A:N
5.7 Medium
AI Score
Confidence
High
0.0004 Low
EPSS
Percentile
9.0%
Cross-site scripting (XSS) vulnerability in the search function in Maven net.mingsoft MS Basic 2.1.13.4 and earlier.
Affected configurations
Node
net.mingsoft\msMatchbasic
| CPE | Name | Operator | Version |
|---|---|---|---|
| net.mingsoft:ms-basic | le | 2.1.13.4 |
Related
cve
cve
CVE-2024-33748
2024-05-07 16:15:07
vulnrichment
vulnrichment
CVE-2024-33748
2024-05-07 00:00:00
osv
osv
MS Basic Cross-site Scripting vulnerability
2024-05-07 18:30:33
veracode
veracode
Cross-site Scripting (XSS)
2024-05-08 07:43:23
nvd
nvd
CVE-2024-33748
2024-05-07 16:15:07
cvelist
cvelist
CVE-2024-33748
2024-05-07 00:00:00
4.1 Medium
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
REQUIRED
Scope
CHANGED
Confidentiality Impact
NONE
Integrity Impact
LOW
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:N/I:L/A:N
5.7 Medium
AI Score
Confidence
High
0.0004 Low
EPSS
Percentile
9.0%
Related for GHSA-64CM-3CJ3-67HF