Lucene search
TwcertCVELIST:CVE-2019-13407HistoryAug 20, 2019 - 12:00 a.m.
CVE-2019-13407 Advan VD-1 has a reflected XSS vulnerability in page cgibin/ssi.cgi
2019-08-2000:00:00
CWE-79
twcert
www.cve.org
1
0.001 Low
EPSS
Percentile
38.0%
A XSS found in Advan VD-1 firmware versions up to 230. VD-1 responses a path error message when a requested resource was not found in page cgibin/ssi.cgi. It leads to a reflected XSS because the error message does not escape properly.
CNA Affected
[
{
"product": "Advan VD-1 firmware",
"vendor": "AndroVideo",
"versions": [
{
"status": "affected",
"version": "up to 230"
}
]
}
]Related
nvd
nvd
CVE-2019-13407
2019-08-29 01:15:11
prion
prion
Cross site scripting
2019-08-29 01:15:00
cve
cve
CVE-2019-13407
2019-08-29 01:15:11