CVE Search Engine - Security Vulnerabilities and Exploits Search Tool | Vulners.com

🔥 Daily Hot!

💪🏽 CPE Enhanced Advisories

🕶 Shadow Exploits

🕵🏼 Vulners CPE

🔐 Security news

💻 Exploit updates

📑 Blogs review

🐧 Linux vulnerabilities

🤖 AI High Score

show all

4 matches found

Veracode•added 2018/04/19 6:10 a.m.•13 views

Cross-Site Scripting (XSS)

@risingstack/protect is vulnerable to cross-site scripting XSS attacks. The attacks exist because the isXss function in lib/rules/xss.js wrongly validates unsafe strings as safe...

6.1CVSS5.7AI score0.0029EPSS

Exploits1References3Affected Software1

OSV•added 2018/04/18 7:29 p.m.•10 views

CVE-2018-1000160

RisingStack protect version 1.2.0 and earlier contains a Cross Site Scripting XSS vulnerability in isXss function in lib/rules/xss.js that can result in dangerous XSS strings being validated as safe. This attack appears to be exploitable via A number of XSS strings26 detailed in the GitHub issue ...

6.1CVSS5.9AI score

Exploits0References3

Prion•added 2018/04/18 7:29 p.m.•7 views

Cross site scripting

RisingStack protect version 1.2.0 and earlier contains a Cross Site Scripting XSS vulnerability in isXss function in lib/rules/xss.js that can result in dangerous XSS strings being validated as safe. This attack appears to be exploitable via A number of XSS strings26 detailed in the GitHub issue ...

4.3CVSS5.8AI score0.0029EPSS

Exploits1References3Affected Software1

Cvelist•added 2018/04/18 7:0 p.m.•11 views

CVE-2018-1000160

RisingStack protect version 1.2.0 and earlier contains a Cross Site Scripting XSS vulnerability in isXss function in lib/rules/xss.js that can result in dangerous XSS strings being validated as safe. This attack appears to be exploitable via A number of XSS strings26 detailed in the GitHub issue ...

5.8AI score0.0029EPSS

Exploits1References3

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by