XSS in search engine

🗓️ 12 Nov 2019 22:11:58Reported by GitHub Advisory DatabaseType

XSS vulnerability in Alkacon OpenCms Apollo Template search engin

AI Insights are available for you today

Leverage the power of AI to quickly understand vulnerabilities, impacts, and exploitability

Reporter	Title	Published	Views	Family All 11
CVE	CVE-2019-13234	27 Aug 201912:15	–	cve
Prion	Code injection	27 Aug 201912:15	–	prion
Veracode	Cross-site Scripting (XSS)	28 Aug 201909:39	–	veracode
OSV	GHSA-FXP8-7H5W-H235 XSS in search engine	12 Nov 201922:58	–	osv
OSV	CVE-2019-13234	27 Aug 201912:15	–	osv
NVD	CVE-2019-13234	27 Aug 201912:15	–	nvd
Cvelist	CVE-2019-13234	27 Aug 201911:05	–	cvelist
Packet Storm	Alkacon OpenCMS 10.5.x Cross Site Scripting	2 Sep 201900:00	–	packetstorm
0day.today	Alkacon OpenCMS 10.5.x - Cross-Site Scripting Vulnerability	2 Sep 201900:00	–	zdt
exploitpack	Alkacon OpenCMS 10.5.x - Cross-Site Scripting	2 Sep 201900:00	–	exploitpack

Vulners

Node

org.opencms opencms-coreRange<11.0.1

Source	Link
nvd	www.nvd.nist.gov/vuln/detail/CVE-2019-13234
aetsu	www.aetsu.github.io/OpenCms
github	www.github.com/alkacon/apollo-template/commits/branch_10_5_x
packetstormsecurity	www.packetstormsecurity.com/files/154298/Alkacon-OpenCMS-10.5.x-Cross-Site-Scripting.html
github	www.github.com/advisories/GHSA-fxp8-7h5w-h235

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

12 Nov 2019 22:58Current

1.8Low risk

Vulners AI Score1.8

CVSS24.3

CVSS36.1

EPSS0.02035

CWE-79