daffainfo
/
nuclei-templates
mirror of https://github.com/daffainfo/nuclei-templates.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity

Update CVE-2023-3479.yaml 

Upon reporting this CVE, I would like to express that the vulnerability has been successfully addressed in version 1.7.8. 

Upon reevaluation, I can confirm that the issue has been resolved.

https://huntr.com/bounties/6ac5cf87-6350-4645-8930-8f2876427723/
patch-1
Vikas Gupta 2023-12-09 20:24:47 +05:30 committed by GitHub
parent c78e75dbfc
commit e7d70f7c8f
No known key found for this signature in database
GPG Key ID: 4AEE18F83AFDEB23
1 changed files with 3 additions and 3 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

4
http/cves/2023/CVE-2023-3479.yaml
View File

@ -1,13 +1,13 @@
id: CVE-2023-3479
info:
name: Hestiacp <= 1.7.8 - Cross-Site Scripting
name: Hestiacp <= 1.7.7 - Cross-Site Scripting
author: edoardottt
severity: medium
description: |
Cross-site Scripting (XSS) - Reflected in GitHub repository hestiacp/hestiacp prior to 1.7.8.
remediation: |
Upgrade to the latest version of Hestiacp (1.7.9 or higher) to mitigate this vulnerability.
Upgrade to the latest version of Hestiacp (1.7.8 or higher) to mitigate this vulnerability.
reference:
- https://huntr.dev/bounties/6ac5cf87-6350-4645-8930-8f2876427723/
- https://nvd.nist.gov/vuln/detail/CVE-2023-3479