CVE-2023-5052
Cross Site Scripting (XSS) in Servidor Uniforme Zero
vulnerability in Uniform Server Zero, version 10.2.5, consisting of an XSS through the /us_extra/phpinfo.php page. This vulnerability could allow a remote user to send a specially crafted query to an authenticated user and partially take over their session details.
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L
Productos afectados
Uniform Server Zero · Uniform Server Zero¿Quieres saber si tu infraestructura está expuesta a esto?
Hablar con TrueHacking →