Lucene search
MauticVULNRICHMENT:CVE-2021-27917HistorySep 18, 2024 - 9:09 p.m.
CVE-2021-27917 XSS in contact tracking and page hits report
2024-09-1821:09:09
CWE-79
Mautic
github.com
xss
contact tracking
page hits
stored
vulnerability
patch
CVSS3
7.3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
LOW
Integrity Impact
LOW
Availability Impact
LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L
AI Score
5.9
Confidence
High
EPSS
0.001
Percentile
18.3%
SSVC
Exploitation
none
Automatable
no
Technical Impact
partial
Prior to this patch, a stored XSS vulnerability existed in the contact tracking and page hits report.
Related
github
github
Mautic has an XSS in contact tracking and page hits report
2024-09-18 22:05:59
nvd
nvd
CVE-2021-27917
2024-09-18 22:15:03
cve
cve
CVE-2021-27917
2024-09-18 22:15:03
cvelist
cvelist
CVE-2021-27917 XSS in contact tracking and page hits report
2024-09-18 21:09:09
osv
osv
Mautic has an XSS in contact tracking and page hits report
2024-09-18 22:05:59
CVSS3
7.3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
LOW
Integrity Impact
LOW
Availability Impact
LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L
AI Score
5.9
Confidence
High
EPSS
0.001
Percentile
18.3%
SSVC
Exploitation
none
Automatable
no
Technical Impact
partial
Related for VULNRICHMENT:CVE-2021-27917