5.7 Medium
AI Score
Confidence
High
0.001 Low
EPSS
Percentile
37.5%
ERPNext 11.1.47 allows reflected XSS via the PATH_INFO to the user/ URI, as demonstrated by a crafted e-mail address.
www.netsparker.com/web-applications-advisories/ns-19-017-cross-site-scripting-in-erpnext/