CVE-2018-16205

CVE-2018-16205

EPSS 0.7%

Cross-site scripting vulnerability in GROWI v3.2.3 and earlier allows remote attackers to inject arbitrary web script or HTML via New Page modal.

Produtos afetados

WESEEK, Inc. · GROWI

Quer saber se a sua infraestrutura está exposta a isto?

Falar com a TrueHacking →

Referências

https://jvn.jp/en/jp/JVN96493183/index.html https://weseek.co.jp/security/2018/12/25/growi-prevent-xss2/