Skip to main content

Diactoros

1 CVEs product

Monthly

CVE-2015-3257 PHP MEDIUM PATCH This Month

Zend/Diactoros/Uri::filterPath in zend-diactoros before 1.0.4 does not properly sanitize path input, which allows remote attackers to perform cross-site scripting (XSS) or open redirect attacks. Rated medium severity (CVSS 6.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity.

XSS Open Redirect Diactoros
NVD
CVSS 3.0
6.1
EPSS
0.2%
EPSS 0% CVSS 6.1
MEDIUM PATCH This Month

Zend/Diactoros/Uri::filterPath in zend-diactoros before 1.0.4 does not properly sanitize path input, which allows remote attackers to perform cross-site scripting (XSS) or open redirect attacks. Rated medium severity (CVSS 6.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity.

XSS Open Redirect Diactoros
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy