Description
Cross-site Scripting (XSS) - Stored in GitHub repository francoisjacquet/rosariosis prior to 8.9.3.
References (2)
Core 2
Core References
Exploit, Patch, Third Party Advisory x_refsource_confirm
https://huntr.dev/bounties/9755ae6a-b08b-40a0-8089-c723b2d9ca52
Patch, Third Party Advisory x_refsource_misc
https://github.com/francoisjacquet/rosariosis/commit/dcd3b86156bf9e981944e1a9e01ea23d8ad7c83a
Scores
CVSS v3
5.4
EPSS
0.0035
EPSS Percentile
57.3%
Attack Vector
NETWORK
CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N
Details
CWE
CWE-79
Status
published
Products (2)
francoisjacquet/rosariosis
0 - 8.9.3Packagist
rosariosis/rosariosis
< 8.9.3
Published
Sep 01, 2022
Tracked Since
Feb 18, 2026