Lucene search

CVE-2017-16043

🗓️ 04 Jun 2018 19:02:29Reported by hackeroneType

"Shout IRC client allows HTML script injection via unescaped /topic command

AI Insights are available for you today

Leverage the power of AI to quickly understand vulnerabilities, impacts, and exploitability

Reporter	Title	Published	Views	Family All 7
Cvelist	CVE-2017-16043	4 Jun 201819:00	–	cvelist
OSV	CVE-2017-16043	4 Jun 201819:29	–	osv
OSV	HTML Injection in shout	7 Nov 201800:28	–	osv
Prion	Command injection	4 Jun 201819:29	–	prion
NVD	CVE-2017-16043	4 Jun 201819:29	–	nvd
Node.js	HTML Injection	9 Mar 201723:01	–	nodejs
Github Security Blog	HTML Injection in shout	7 Nov 201800:28	–	github

Nvd

Vulners

Node

shout_project shoutRange0.44.0–0.50.0node.js

[
  {
    "product": "shout node module",
    "vendor": "HackerOne",
    "versions": [
      {
        "status": "affected",
        "version": ">=0.44.0 <=0.49.3"
      }
    ]
  }
]

Source	Link
nodesecurity	www.nodesecurity.io/advisories/322
github	www.github.com/erming/shout/pull/344

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

04 Jun 2018 19:29Current

6.2Medium risk

Vulners AI Score6.2

CVSS24.3

CVSS36.1

EPSS0.00259