CVE-2023-2954

MEDIUM 4.8

Cross-site Scripting (XSS) - Stored in liangliangyy/djangoblog

CVSS Score

4.8

EPSS Score

0.0%

EPSS Percentile

0th

Cross-site Scripting (XSS) - Stored in GitHub repository liangliangyy/djangoblog prior to master.

CWE	CWE-79
Vendor	liangliangyy
Product	liangliangyy/djangoblog
Published	May 29, 2023
Last Updated	Jan 13, 2025

Stay Ahead of the Next One

Get instant alerts for liangliangyy liangliangyy/djangoblog

Be the first to know when new medium vulnerabilities affecting liangliangyy liangliangyy/djangoblog are published — delivered to Slack, Telegram or Discord.

Get Free Alerts → Free · No credit card · 60 sec setup

CVSS v3 Breakdown

CVSS:3.0/AV:N/AC:H/PR:L/UI:R/S:U/C:H/I:N/A:N

Affected Versions

liangliangyy / liangliangyy/djangoblog

unspecified < master

References

NVD ↗ CVE.org ↗ EPSS Data ↗

huntr.dev: https://huntr.dev/bounties/47f08086-aaae-4ca7-b0ca-24c616d3ad7d github.com: https://github.com/liangliangyy/djangoblog/commit/c2bfdb18c5f32b13ea4b50aa689b8ea4beb38719