Lucene search
GoogleOSV:GHSA-F8P3-Q834-Q9CJHistoryDec 26, 2022 - 9:30 a.m.
php-mod/curl allows Cross-site Scripting
2022-12-2609:30:26
Google
osv.dev
9
php-mod/curl
cross-site scripting
post_file_path_upload.php
post_multidimensional.php
vulnerability
CVSS3
6.1
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
CHANGED
Confidentiality Impact
LOW
Integrity Impact
LOW
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
EPSS
0.001
Percentile
38.2%
php-mod/curl (a wrapper of the PHP cURL extension) before 2.3.2 allows XSS via the post_file_path_upload.php key parameter and the POST data to post_multidimensional.php.
Related
osv
osv
CVE-2021-30134
2022-12-26 07:15:11
nvd
nvd
CVE-2021-30134
2022-12-26 07:15:11
cve
cve
CVE-2021-30134
2022-12-26 07:15:11
patchstack
patchstack
github
github
php-mod/curl allows Cross-site Scripting
2022-12-26 09:30:26
nuclei
nuclei
Php-mod/curl Library <2.3.2 - Cross-Site Scripting
2023-02-16 05:05:10
wpexploit
wpexploit
cvelist
cvelist
CVE-2021-30134
2022-12-26 00:00:00
wpvulndb
wpvulndb
prion
prion
Design/Logic Flaw
2022-12-26 07:15:00
CVSS3
6.1
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
CHANGED
Confidentiality Impact
LOW
Integrity Impact
LOW
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
EPSS
0.001
Percentile
38.2%
Related for OSV:GHSA-F8P3-Q834-Q9CJ