GHSA-9cw9-m7hg-w8mf
Suggest an improvement- Source
- https://github.com/advisories/GHSA-9cw9-m7hg-w8mf
- Import Source
- https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2023/11/GHSA-9cw9-m7hg-w8mf/GHSA-9cw9-m7hg-w8mf.json
- JSON Data
- https://api.osv.dev/v1/vulns/GHSA-9cw9-m7hg-w8mf
- Aliases
- Published
- 2023-11-02T18:30:25Z
- Modified
- 2024-02-16T08:22:01.551209Z
- Severity
-
- 4.8 (Medium) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:C/C:L/I:L/A:N CVSS Calculator
- Summary
- Reportico Cross-site Scripting vulnerability
- Details
-
Reportico 7.1.21 is vulnerable to Cross Site Scripting (XSS).
- Database specific
{ "nvd_published_at": "2023-11-02T17:15:11Z", "cwe_ids": [ "CWE-79" ], "severity": "MODERATE", "github_reviewed": true, "github_reviewed_at": "2023-11-09T22:10:12Z" }- References
Affected packages
Packagist / reportico-web/reportico
Package
- Name
- reportico-web/reportico
- Purl
- pkg:composer/reportico-web/reportico
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affectedLast affected7.1.21
Affected versions
4.*
4.6
6.*
6.0.0
6.0.1
6.0.2
6.0.3
6.0.4
6.0.5
6.0.6
6.0.7
6.0.8
6.0.9
6.0.10
6.0.11
6.0.12
6.0.13
6.0.14
6.0.15
6.0.16
7.*
7.0.1-alpha
7.0.2-alpha
7.0.3-alpha
7.0.4-alpha
7.0.5-alpha
7.0.6-alpha
7.0.7-alpha
7.0.8-alpha
7.0.9-alpha
7.0.10-alpha
7.1.0-alpha
7.1.1-alpha
7.1.2-alpha
7.1.3-alpha
7.1.4-alpha
7.1.5-alpha
7.1.6-alpha
7.1.7-alpha
7.1.8-alpha
7.1.9-alpha
7.1.10-alpha
7.1.11-alpha
7.1.12-alpha
7.1.13-alpha
7.1.14-alpha
7.1.15-alpha
7.1.16-alpha
7.1.17-alpha
7.1.18-alpha
7.1.19-beta
7.1.20-beta
7.1.21-beta