Tdm
1 CVEs
product
Monthly
trollepierre/tdm before 2017-04-13 is vulnerable to a reflected XSS in tdm-master/webhook.php (challenge parameter). Rated medium severity (CVSS 6.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available.
XSS
PHP
Tdm
NVD
GitHub
CVSS 3.0
6.1
EPSS
0.2%
EPSS 0%
CVSS 6.1
MEDIUM
POC
PATCH
This Month
trollepierre/tdm before 2017-04-13 is vulnerable to a reflected XSS in tdm-master/webhook.php (challenge parameter). Rated medium severity (CVSS 6.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available.
XSS
PHP
Tdm
NVD
GitHub