GSA_kwCzR0hTQS1neDRyLWZ2d2ctODY3OM4AAzos

Moderate EPSS: 0.0006% (0.18761 Percentile) EPSS:

Permalink JSON

Admidio vulnerable to Cross-site Scripting

Affected Packages	Affected Versions	Fixed Versions
packagist:admidio/admidio	< 4.2.8	4.2.8
1 Dependent packages 1 Dependent repositories 23 Downloads total Affected Version Ranges All affected versions 4.1.0, 4.1.3, 4.2.0, 4.2.1, 4.2.2, 4.2.3, 4.2.4, 4.2.5, 4.2.6, 4.2.7 All unaffected versions 4.2.8, 4.2.9, 4.2.10, 4.2.11, 4.2.12, 4.2.13, 4.2.14, 4.3.0, 4.3.1, 4.3.2, 4.3.3, 4.3.4, 4.3.5, 4.3.6, 4.3.7, 4.3.8, 4.3.9, 4.3.10, 4.3.11, 4.3.12, 4.3.13, 4.3.14, 4.3.15

Cross-site Scripting (XSS) - Stored in GitHub repository admidio/admidio prior to 4.2.8.

References:

Identifiers

GHSA-gx4r-fvwg-8678

CVE-2023-3109

Risk

Severity

Moderate

EPSS

EPSS Percentage: 0.0006

EPSS Percentile: 0.18761

Classification

General

Source

GitHub Advisory Database

Origin

Unspecified

Repository

https://github.com/admidio/admidio

Date and time

Published

about 2 years ago

Updated

over 1 year ago

API

JSON

ecosyste.ms

Data

Tools

Indexes

Applications

Experiments

Advisories