SecBoard
Zurück zur CVE-Übersicht

CVE-2016-7150

LOW(3.5)

AV:N/AC:M/Au:S/C:N/I:P/A:N

Risk Signal Score9/100 — NIEDRIG

EPSS-Score

0%

Exploit-Wahrscheinlichkeit (30 Tage)

CVSS Score

3.5

Technische Schwere

Beschreibung

Cross-site scripting (XSS) vulnerability in b2evolution 6.7.5 and earlier allows remote authenticated users to inject arbitrary web script or HTML via the site name.

Referenzen