Lucene search
K

5 matches found

RedhatCVE
RedhatCVE
added 2025/05/22 10:1 a.m.9 views

CVE-2019-8153

A mitigation bypass to prevent cross-site scripting XSS exists in Magento 2.2 prior to 2.2.10, Magento 2.3 prior to 2.3.3 or 2.3.2-p1. Successful exploitation of this vulnerability would result in an attacker being able to bypass the escapeURL function and execute a malicious XSS payload...

6.1CVSS5.3AI score0.01476EPSS
Exploits0References1
Circl
Circl
added 2024/02/04 3:51 p.m.9 views

CVE-2019-8153

creationtimestamp| type| source ---|---|--- 2024-02-04 15:51:15+00:00| seen| Telegram/ZMXzUlTZHjpltj1FawR1cV-WQ6M0056W4V7aeQSPGqPcXPXa...

6.1CVSS4.8AI score0.01476EPSS
Exploits0
NVD
NVD
added 2019/11/06 12:15 a.m.19 views

CVE-2019-8153

A mitigation bypass to prevent cross-site scripting XSS exists in Magento 2.2 prior to 2.2.10, Magento 2.3 prior to 2.3.3 or 2.3.2-p1. Successful exploitation of this vulnerability would result in an attacker being able to bypass the escapeURL function and execute a malicious XSS payload...

6.1CVSS5.9AI score0.01476EPSS
Exploits0References1
Cvelist
Cvelist
added 2019/11/05 11:49 p.m.19 views

CVE-2019-8153

A mitigation bypass to prevent cross-site scripting XSS exists in Magento 2.2 prior to 2.2.10, Magento 2.3 prior to 2.3.3 or 2.3.2-p1. Successful exploitation of this vulnerability would result in an attacker being able to bypass the escapeURL function and execute a malicious XSS payload...

6.1AI score0.01476EPSS
Exploits0References1
CVE
CVE
added 2019/11/05 11:49 p.m.58 views

CVE-2019-8153

The CVE-2019-8153 entry describes a mitigation bypass that allows bypassing Magento’s escapeURL() and executing a malicious XSS payload. Affected are Magento 2.2 versions before 2.2.10 and Magento 2.3 versions before 2.3.3 or 2.3.2-p1. Impact is client-facing XSS due to bypassed URL escaping; CVS...

6.1CVSS6AI score0.01476EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder