Lucene search
GoogleOSV:CVE-2023-3620HistoryJul 11, 2023 - 3:15 p.m.
CVE-2023-3620
2023-07-1115:15:20
Google
osv.dev
2
cve-2023-3620
cross-site scripting
github repository
amauric/tarteaucitron.js
v1.13.1
software
5.4 Medium
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
REQUIRED
Scope
CHANGED
Confidentiality Impact
LOW
Integrity Impact
LOW
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N
6.2 Medium
AI Score
Confidence
High
0.001 Low
EPSS
Percentile
19.5%
Cross-site Scripting (XSS) - Stored in GitHub repository amauric/tarteaucitron.js prior to v1.13.1.
Related
nvd
nvd
CVE-2023-3620
2023-07-11 15:15:20
osv
osv
tarteaucitron.js vulnerable to Cross-site Scripting
2023-07-11 15:31:18
prion
prion
Cross site scripting
2023-07-11 15:15:00
cvelist
cvelist
github
github
tarteaucitron.js vulnerable to Cross-site Scripting
2023-07-11 15:31:18
cve
cve
CVE-2023-3620
2023-07-11 15:15:20
huntr
huntr
youtube service is vulnerable to XSS vulnerability
2023-07-02 19:14:23
veracode
veracode
Cross-site Scripting (XSS)
2023-07-17 10:43:54
drupal
drupal
TacJS - Moderately critical - Cross Site Scripting - SA-CONTRIB-2024-016
2024-03-27 00:00:00
5.4 Medium
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
REQUIRED
Scope
CHANGED
Confidentiality Impact
LOW
Integrity Impact
LOW
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N
6.2 Medium
AI Score
Confidence
High
0.001 Low
EPSS
Percentile
19.5%
Related for OSV:CVE-2023-3620