Lucene search

Cross-Site Scripting in status-board

🗓️ 23 Sep 2019 18:54:32Reported by GitHub Advisory DatabaseType

Cross-Site Scripting in 'status-board' software. Vulnerable to XSS due to inadequate input sanitization in 'renderJsDashboard()' function. No fix available. Consider alternative package

Reporter	Title	Published	Views	Family All 9
GithubExploit	Exploit for Cross-site Scripting in Status Board Project Status Board	1 Dec 202009:18	–	githubexploit
CVE	CVE-2019-15478	26 Aug 201912:15	–	cve
Veracode	Cross-Site Scripting (XSS)	27 Aug 201905:20	–	veracode
Prion	Cross site scripting	26 Aug 201912:15	–	prion
OSV	Cross-Site Scripting in status-board	23 Sep 201918:32	–	osv
OSV	CVE-2019-15478	26 Aug 201912:15	–	osv
Cvelist	CVE-2019-15478	26 Aug 201911:42	–	cvelist
Node.js	Cross-Site Scripting	5 Sep 201921:47	–	nodejs
NVD	CVE-2019-15478	26 Aug 201912:15	–	nvd

Vulners

Node

status\-boardRange<1.1.82

Source	Link
nvd	www.nvd.nist.gov/vuln/detail/CVE-2019-15478
github	www.github.com/jameswlane/status-board/pull/949
github	www.github.com/jameswlane/status-board/pull/949/files
snyk	www.snyk.io/vuln/SNYK-JS-STATUSBOARD-460293
npmjs	www.npmjs.com/advisories/1151
github	www.github.com/advisories/GHSA-6m4r-cgm3-6q7q

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

23 Sep 2019 18:32Current

3.6Low risk

Vulners AI Score3.6

CVSS24.3

CVSS36.1

EPSS0.00059

CWE-79