6.4 Medium
AI Score
Confidence
High
0.001 Low
EPSS
Percentile
29.2%
Cross-site scripting vulnerability in GROWI v3.2.3 and earlier allows remote attackers to inject arbitrary web script or HTML via New Page modal.
jvn.jp/en/jp/JVN96493183/index.html
weseek.co.jp/security/2018/12/25/growi-prevent-xss2/