Mesbook: >> Mesbook Security Vulnerabilities
Information exposure vulnerability in MESbook 20221021.03 version, the exploitation of which could allow a local attacker, with user privileges, to access different resources by changing the API value of the application.
CVSS Score
8.1
EPSS Score
0.001
Published
2024-07-03
Uncontrolled Resource Consumption vulnerability in MESbook 20221021.03 version. An unauthenticated remote attacker can use the "message" parameter to inject a payload with dangerous JavaScript code, causing the application to loop requests on itself, which could lead to resource consumption and disable the application.
CVSS Score
7.5
EPSS Score
0.006
Published
2024-07-03