Lucene search

K

MitreCVELIST:CVE-2019-25023

HistoryFeb 27, 2021 - 4:22 a.m.

CVE-2019-25023

2021-02-2704:22:59

mitre

www.cve.org

3

scytl svote

ip address

injection

EPSS

0.001

Percentile

47.4%

An issue was discovered in Scytl sVote 2.1. Because the IP address from an X-Forwarded-For header (which can be manipulated client-side) is used for the internal application logs, an attacker can inject wrong IP addresses into these logs.

References

suid.ch/research/CVE-2019-25023.html

EPSS

0.001

Percentile

47.4%

Related for CVELIST:CVE-2019-25023

nvd1 prion1 cve1