Vulnerability Details CVE-2018-15546
Accusoft PrizmDoc version 13.3 and earlier contains a Stored Cross-Site Scripting issue through a crafted PDF file.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.003
EPSS Ranking 52.9%
CVSS Severity
CVSS v3 Score 6.1
CVSS v2 Score 4.3
References
- http://help.accusoft.com/PrizmDoc/v13.4/ReleaseNotes/index.htm
- https://medium.com/%40mrnikhilsri/stored-cross-site-scripting-in-prizmdoc-13-3-and-before-cve-2018-15546-1938191845c5
- http://help.accusoft.com/PrizmDoc/v13.4/ReleaseNotes/index.htm
- https://medium.com/%40mrnikhilsri/stored-cross-site-scripting-in-prizmdoc-13-3-and-before-cve-2018-15546-1938191845c5
Products affected by CVE-2018-15546
-
cpe:2.3:a:accusoft:prizmdoc:13.0
-
cpe:2.3:a:accusoft:prizmdoc:13.1
-
cpe:2.3:a:accusoft:prizmdoc:13.2
-
cpe:2.3:a:accusoft:prizmdoc:13.3