CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

3 matches found

Github Security Blog•added 2019/06/13 7:9 p.m.•15 views

Cross-Site Scripting in ids-enterprise

Versions of ids-enterprise prior to 4.18.2 are vulnerable to Cross-Site Scripting XSS. The soho-dropdown component does not properly encode its output and may allow attackers to execute arbitrary JavaScript. Recommendation Upgrade to version 4.18.2 or later...

4.8AI score

Exploits0References4Affected Software1

OSV•added 2019/06/13 7:9 p.m.•0 views

GHSA-49R3-3H96-RWJ6 Cross-Site Scripting in ids-enterprise

6.1AI score

Exploits0References3

Node.js•added 2019/06/10 8:46 p.m.•17 views

Cross-Site Scripting

Overview Versions of ids-enterprise prior to 4.18.2 are vulnerable to Cross-Site Scripting XSS. The soho-dropdown component does not properly encode its output and may allow attackers to execute arbitrary JavaScript. Recommendation Upgrade to version 4.18.2 or later References - GitHub Issue -...

6.8AI score

Exploits0Affected Software1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by