PT-2022-7816 · Eidogo · Eidogo

Yewang

Published

2022-07-06

Updated

2022-07-14

CVE-2015-3172

CVSS v2.0

3.5

Low

Vector

AV:N/AC:M/Au:S/C:N/I:P/A:N

Name of the Vulnerable Software and Affected Versions EidoGo (affected versions not specified)

Description The issue concerns Cross-Site Scripting (XSS) attacks. These attacks occur when an application includes user input in its output without properly validating or encoding it, allowing an attacker to inject malicious scripts into the application. In this case, EidoGo is susceptible to XSS attacks via maliciously crafted SGF input.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Exploit

XSS

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-79

Related Identifiers

CVE-2015-3172

Affected Products

Eidogo

PT-2022-7816 · Eidogo · Eidogo

CVE-2015-3172

Weakness Enumeration

Related Identifiers

Affected Products

References · 5