CVE-2019-15810

2019-09-3017:15:11

Google

osv.dev

5.8 Medium

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

29.5%

JSON

Insufficient sanitization during device search in Netdisco 2.042010 allows for reflected XSS via manipulation of a URL parameter.

CPENameOperatorVersion
netdiscoeq2.038017
netdiscoeq2.038011
netdiscoeq2.038012
netdiscoeq2.039001
netdiscoeq2.038020
netdiscoeq2.033005
netdiscoeq2.038028.003
netdiscoeq2.001000_001
netdiscoeq2.012000
netdiscoeq2.024003_001

Name	Operator	Version
netdisco	eq	2.038017
netdisco	eq	2.038011
netdisco	eq	2.038012
netdisco	eq	2.039001
netdisco	eq	2.038020
netdisco	eq	2.033005
netdisco	eq	2.038028.003
netdisco	eq	2.001000_001
netdisco	eq	2.012000
netdisco	eq	2.024003_001