CVE-2020-19611

2021-12-0716:15:07

Google

osv.dev

5.8 Medium

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

28.8%

JSON

Cross Site Scripting (XSS) in redirect module of Racktables version 0.21.2, allows an attacker to inject arbitrary web script or HTML via the op parameter.

CPENameOperatorVersion
racktableseqRackTables-0.20.4
racktableseqRackTables-0.20.10
racktableseqRackTables-0.14.6
racktableseqRackTables-0.20.0
racktableseqRackTables-0.16.3
racktableseqRackTables-0.19.1
racktableseqRackTables-0.20.5
racktableseqRackTables-0.20.6
racktableseqRackTables-0.18.2
racktableseqRackTables-0.19.3

Name	Operator	Version
racktables	eq	RackTables-0.20.4
racktables	eq	RackTables-0.20.10
racktables	eq	RackTables-0.14.6
racktables	eq	RackTables-0.20.0
racktables	eq	RackTables-0.16.3
racktables	eq	RackTables-0.19.1
racktables	eq	RackTables-0.20.5
racktables	eq	RackTables-0.20.6
racktables	eq	RackTables-0.18.2
racktables	eq	RackTables-0.19.3