Xhprof
1 CVEs
product
Monthly
Cross-site scripting (XSS) vulnerability in XHProf before 0.9.4 allows remote attackers to inject arbitrary web script or HTML via the run parameter. Rated medium severity (CVSS 4.3), this vulnerability is remotely exploitable. No vendor patch available.
XSS
Xhprof
NVD
VulDB
CVSS 2.0
4.3
EPSS
0.3%
EPSS 0%
CVSS 4.3
MEDIUM
This Month
Cross-site scripting (XSS) vulnerability in XHProf before 0.9.4 allows remote attackers to inject arbitrary web script or HTML via the run parameter. Rated medium severity (CVSS 4.3), this vulnerability is remotely exploitable. No vendor patch available.
XSS
Xhprof
NVD
VulDB