Tad Book3 Project: >> Tad Book3 Security Vulnerabilities
Tad Book3 editing book page does not perform identity verification. Remote attackers can use the vulnerability to view and modify arbitrary content of books without permission.
CVSS Score
9.1
EPSS Score
0.003
Published
2021-10-08
Tad Book3 editing book function does not filter special characters. Unauthenticated attackers can remotely inject JavaScript syntax and execute stored XSS attacks.
CVSS Score
6.1
EPSS Score
0.007
Published
2021-10-08