6.8 Medium
AI Score
Confidence
High
0.001 Low
EPSS
Percentile
30.1%
xunfeng 0.2.0 allows command execution via CSRF because masscan.py mishandles backquote characters, a related issue to CVE-2018-16832.
github.com/ysrc/xunfeng/issues/176