Lucene search
HistoryJul 11, 2023 - 3:15 p.m.
CVE-2023-3620
cross-site scripting
github
repository
amauric/tarteaucitron.js
v1.13.1
5.4 Medium
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
REQUIRED
Scope
CHANGED
Confidentiality Impact
LOW
Integrity Impact
LOW
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N
0.001 Low
EPSS
Percentile
19.5%
Cross-site Scripting (XSS) - Stored in GitHub repository amauric/tarteaucitron.js prior to v1.13.1.
Affected configurations
Node
tarteaucitrontarteaucitronRange<1.13.1node.js
Related
cve
cve
CVE-2023-3620
2023-07-11 15:15:20
huntr
huntr
youtube service is vulnerable to XSS vulnerability
2023-07-02 19:14:23
osv
osv
CVE-2023-3620
2023-07-11 15:15:20
tarteaucitron.js vulnerable to Cross-site Scripting
2023-07-11 15:31:18
prion
prion
Cross site scripting
2023-07-11 15:15:00
cvelist
cvelist
github
github
tarteaucitron.js vulnerable to Cross-site Scripting
2023-07-11 15:31:18
veracode
veracode
Cross-site Scripting (XSS)
2023-07-17 10:43:54
drupal
drupal
TacJS - Moderately critical - Cross Site Scripting - SA-CONTRIB-2024-016
2024-03-27 00:00:00
5.4 Medium
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
REQUIRED
Scope
CHANGED
Confidentiality Impact
LOW
Integrity Impact
LOW
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N
0.001 Low
EPSS
Percentile
19.5%
Related for NVD:CVE-2023-3620