Shimmie2
1 CVEs
product
Monthly
Shimmie 2 2.6.0 allows an attacker to upload a crafted SVG file that enables stored XSS. Rated medium severity (CVSS 6.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.
XSS
Shimmie2
NVD
GitHub
CVSS 3.0
6.1
EPSS
0.9%
EPSS 1%
CVSS 6.1
MEDIUM
POC
This Month
Shimmie 2 2.6.0 allows an attacker to upload a crafted SVG file that enables stored XSS. Rated medium severity (CVSS 6.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.
XSS
Shimmie2
NVD
GitHub