4 matches found
CVE-2019-15479
Status Board 1.1.81 has reflected XSS via dashboard.ts...
status-board-cli (>=1.1.0 <=2.0.51) potentially affected by CVE-2019-15479 via status-board (>=1.1.12 <=1.1.80)
status-board NPM version =1.1.12, =1.1.0, =2.0.51 Source cves: CVE-2019-15479 Source advisory: OSV:GHSA-8864-RHMW-5M6F...
CVE-2019-15479
Status Board 1.1.81 has reflected XSS via dashboard.ts...
CVE-2019-15479
CVE-2019-15479 concerns Status Board 1.1.81 exhibiting a Cross‑Site Scripting (XSS) in the dashboard.ts path. The root cause is insufficient sanitization when concatenating user-controlled input into the error/dashboard rendering flow, enabling arbitrary JavaScript execution in a victim’s browser...