Lucene search
GoogleOSV:CVE-2018-16405HistorySep 03, 2018 - 7:29 p.m.
CVE-2018-16405
2018-09-0319:29:00
Google
osv.dev
3
0.001 Low
EPSS
Percentile
34.7%
An issue was discovered in Mayan EDMS before 3.0.2. The Appearance app sets window.location directly, leading to XSS.
| CPE | Name | Operator | Version |
|---|---|---|---|
| mayan-edms | eq | 2.5.2 | |
| mayan-edms | eq | 2.1.4 | |
| mayan-edms | eq | 0.12.1 | |
| mayan-edms | eq | 2.1.5 | |
| mayan-edms | eq | 0.7 | |
| mayan-edms | eq | 0.6 | |
| mayan-edms | eq | 0.12.2 | |
| mayan-edms | eq | 2.1.7 | |
| mayan-edms | eq | 2.1 | |
| mayan-edms | eq | 2.2b3 |
Related
cvelist
cvelist
CVE-2018-16405
2018-09-03 19:00:00
prion
prion
Cross site scripting
2018-09-03 19:29:00
osv
osv
PYSEC-2018-16
2018-09-03 19:29:00
PYSEC-2018-106
2018-09-03 19:29:00
Moderate severity vulnerability that affects mayan-edms
2018-09-06 03:24:50
nvd
nvd
CVE-2018-16405
2018-09-03 19:29:00
cve
cve
CVE-2018-16405
2018-09-03 19:29:00
veracode
veracode
Cross-Site Scripting (XSS)
2018-09-04 02:48:03
github
github
Moderate severity vulnerability that affects mayan-edms
2018-09-06 03:24:50