CVE-2025-0709

Sažetak

A vulnerability was found in Dcat-Admin 2.2.1-beta. It has been rated as problematic. This issue affects some unknown processing of the file /admin/auth/roles of the component Roles Page. The manipulation leads to cross site scripting. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used.

Reference

https://github.com/taynes-llllzt/taynes/issues/7
https://github.com/taynes-llllzt/taynes/issues/7#issue-2792259251
https://vuldb.com/?ctiid.293237
https://vuldb.com/?id.293237
https://vuldb.com/?submit.483364

CVSS

Base:	3.3
Impact:	2.9
Exploitability:	6.4

Pristup

Vektor	Složenost	Autentikacija
NETWORK	LOW	MULTIPLE

Impact

Povjerljivost	Cjelovitost	Dostupnost
NONE	PARTIAL	NONE

CVSS vektor

AV:N/AC:L/Au:M/C:N/I:P/A:N

Zadnje važnije ažuriranje

24-01-2025 - 21:15

Objavljeno

24-01-2025 - 21:15