{"id":"CVE-2017-7871","details":"trollepierre/tdm before 2017-04-13 is vulnerable to a reflected XSS in tdm-master/webhook.php (challenge parameter).","modified":"2026-05-18T05:50:05.930375901Z","published":"2017-04-14T18:59:01.157Z","database_specific":{"unresolved_ranges":[{"source":"CPE_FIELD","extracted_events":[{"last_affected":"2017-04-12"}],"cpes":["cpe:2.3:a:tdm_project:tdm:*:*:*:*:*:*:*:*"],"vendor_product":"tdm_project:tdm"},{"source":"DESCRIPTION","extracted_events":[{"fixed":"2017-04-13"}]}]},"references":[{"type":"FIX","url":"https://github.com/trollepierre/tdm/commit/2e89019d6a491f0a5ac3db8732181f6eb1d219aa"},{"type":"EVIDENCE","url":"https://github.com/trollepierre/tdm/issues/50"}],"affected":[{"ranges":[{"type":"GIT","repo":"https://github.com/trollepierre/tdm","events":[{"introduced":"0"},{"fixed":"2e89019d6a491f0a5ac3db8732181f6eb1d219aa"}],"database_specific":{"source":"REFERENCES"}}],"database_specific":{"source":"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2017-7871.json"}}],"schema_version":"1.7.5","severity":[{"type":"CVSS_V3","score":"CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N"}]}