ГлавнаяУязвимости → CVE-2025-51534
8.1высокая

CVE-2025-51534

Описание

A cross-site scripting (XSS) vulnerability in Austrian Archaeological Institute (AI) OpenAtlas v8.11.0 allows attackers to execute arbitrary web scripts or HTML via injecting a crafted payload into the Name field.

Затрагиваемое ПО
Craws Openatlas
CVSS
Балл8.1 — высокая
ВекторCVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:C/C:H/I:H/A:N
Источники
https://www.sec4you-pentest.com/schwachstelle/openatlas-stored-nested-xss-delete-button/https://www.sec4you-pentest.com/schwachstellen/https://www.sec4you-pentest.com/schwachstelle/openatlas-stored-nested-xss-delete-button/