Lucene search
GoogleOSV:CVE-2019-20008HistoryDec 26, 2019 - 11:15 p.m.
CVE-2019-20008
2019-12-2623:15:11
Google
osv.dev
8
0.001 Low
EPSS
Percentile
26.4%
In Archery before 1.3, inserting an XSS payload into a project name (either by creating a new project or editing an existing one) will result in stored XSS on the vulnerability-scan scheduling page.
| CPE | Name | Operator | Version |
|---|---|---|---|
| archerysec | eq | 1.0 | |
| archerysec | eq | archerysec-v1.2 | |
| archerysec | eq | ARCHERY-v1.0-beta | |
| archerysec | eq | 1.1 |
Related
cve
cve
CVE-2019-20008
2019-12-26 23:15:11
prion
prion
Cross site scripting
2019-12-26 23:15:00
osv
osv
PYSEC-2019-112
2019-12-26 23:15:00
cvelist
cvelist
CVE-2019-20008
2019-12-26 22:43:48
nvd
nvd
CVE-2019-20008
2019-12-26 23:15:11