Lucene search

K
prionPRIOn knowledge basePRION:CVE-2022-25847
HistoryJan 26, 2023 - 9:15 p.m.

Cross site scripting

2023-01-2621:15:00
PRIOn knowledge base
www.prio-n.com
3
cross site scripting
vulnerability
serve-lite

EPSS

0.001

Percentile

29.1%

All versions of the package serve-lite are vulnerable to Cross-site Scripting (XSS) because when it detects a request to a directory, it renders a file listing of all of its contents with links that include the actual file names without any sanitization or output encoding.

EPSS

0.001

Percentile

29.1%

Related for PRION:CVE-2022-25847