PT-2023-15891 · Snoyberg · Keter
Max
·
Publicado
2023-01-05
·
Atualizado
2024-05-17
·
CVE-2022-4877
CVSS v3.1
6.1
Média
| Vetor | AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N |
Name of the Vulnerable Software and Affected Versions
snoyberg keter versions up to 1.8.1
Description
A vulnerability has been found in snoyberg keter, classified as problematic. This issue affects unknown code of the file Keter/Proxy.hs. The manipulation of the argument
host leads to cross-site scripting. The attack can be initiated remotely.Recommendations
For versions up to 1.8.1, upgrade to version 1.8.2 to address this issue. As a temporary workaround, consider restricting the manipulation of the
host argument to minimize the risk of exploitation.Correção
XSS
Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾
Enumeração de Fraquezas
Identificadores relacionados
Produtos afetados
Keter