Lucene search

K
veracodeVeracode Vulnerability DatabaseVERACODE:35717
HistoryMay 26, 2022 - 6:34 a.m.

Cross-site Scripting (XSS)

2022-05-2606:34:14
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
8
cross-site scripting
useragent
vulnerability
mautic/core
sanitization
injection

EPSS

0.004

Percentile

72.0%

mautic/core is vulnerable to cross site scripting. The vulnerability exists due to a lack of sanitization of useragent before displaying, allowing an attacker to inject maliciously crafted script into the system.

EPSS

0.004

Percentile

72.0%