Lucene search
GoogleOSV:GHSA-FPCV-J2Q9-VQHWHistorySep 06, 2018 - 3:24 a.m.
Moderate severity vulnerability that affects mayan-edms
2018-09-0603:24:50
Google
osv.dev
6
0.001 Low
EPSS
Percentile
34.5%
An issue was discovered in Mayan EDMS before 3.0.2. The Appearance app sets window.location directly, leading to XSS.
| CPE | Name | Operator | Version |
|---|---|---|---|
| mayan-edms | eq | 2.5.2 | |
| mayan-edms | eq | 1.0.rc1 | |
| mayan-edms | eq | 2.1.4 | |
| mayan-edms | eq | 2.1.5 | |
| mayan-edms | eq | 2.1rc2 | |
| mayan-edms | eq | 2.1 | |
| mayan-edms | eq | 2.2b3 | |
| mayan-edms | eq | 2.5.1 | |
| mayan-edms | eq | 2.6.3 | |
| mayan-edms | eq | 2.1.2 |
References
Related
cvelist
cvelist
CVE-2018-16405
2018-09-03 19:00:00
prion
prion
Cross site scripting
2018-09-03 19:29:00
osv
osv
nvd
nvd
CVE-2018-16405
2018-09-03 19:29:00
github
github
Moderate severity vulnerability that affects mayan-edms
2018-09-06 03:24:50
cve
cve
CVE-2018-16405
2018-09-03 19:29:00
veracode
veracode
Cross-Site Scripting (XSS)
2018-09-04 02:48:03