Lucene search

Cross-Site Scripting in http_server

🗓️ 31 Mar 2020 17:26:02Reported by GitHub Advisory DatabaseType

Vulnerability in http_server to Cross-Site Scripting (XSS)

AI Insights are available for you today

Leverage the power of AI to quickly understand vulnerabilities, impacts, and exploitability

Reporter	Title	Published	Views	Family All 7
Cvelist	CVE-2019-15600	18 Dec 201920:56	–	cvelist
Veracode	Symlink Attack	5 Dec 201908:11	–	veracode
Prion	Path traversal	18 Dec 201921:15	–	prion
Hacker One	Node.js third-party modules: Path traversal in https://www.npmjs.com/package/http_server via symlink	11 Sep 201910:37	–	hackerone
CVE	CVE-2019-15600	18 Dec 201921:15	–	cve
NVD	CVE-2019-15600	18 Dec 201921:15	–	nvd
OSV	Cross-Site Scripting in http_server	31 Mar 202017:02	–	osv

Vulners

Node

apache http_serverRange≤1.0.12

Source	Link
nvd	www.nvd.nist.gov/vuln/detail/CVE-2019-15600
hackerone	www.hackerone.com/reports/692262
hackerone	www.hackerone.com/reports/578138
npmjs	www.npmjs.com/advisories/1170
github	www.github.com/advisories/GHSA-754x-4jwp-cqp6

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

31 Mar 2020 17:02Current

5.3Medium risk

Vulners AI Score5.3

CVSS25

CVSS37.5

EPSS0.01509

CWE-22