| ID | CVE-2017-6589 | ||||||
| Sažetak | EpicEditor through 0.2.3 has Cross-Site Scripting because of an insecure default marked.js configuration. An example attack vector is a crafted IMG element in an HTML document. | ||||||
| Reference | |||||||
| CVSS |
|
||||||
| Pristup |
|
||||||
| Impact |
|
||||||
| CVSS vektor | AV:N/AC:M/Au:N/C:N/I:P/A:N | ||||||
| Zadnje važnije ažuriranje | 10-03-2017 - 19:31 | ||||||
| Objavljeno | 09-03-2017 - 19:59 |
