Xzs
1 CVEs
product
Monthly
xzs v3.8.0 was discovered to contain a cross-site scripting (XSS) vulnerability in the component /admin/question/edit. Rated medium severity (CVSS 5.4), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.
XSS
Xzs
NVD
GitHub
CVSS 3.1
5.4
EPSS
0.6%
EPSS 1%
CVSS 5.4
MEDIUM
POC
This Month
xzs v3.8.0 was discovered to contain a cross-site scripting (XSS) vulnerability in the component /admin/question/edit. Rated medium severity (CVSS 5.4), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.
XSS
Xzs
NVD
GitHub