2 matches found
CVE-2019-15478
CVE-2019-15478 affects Status Board 1.1.81 with a reflected XSS via logic.ts. Multiple sources (GitHub advisory GHSA-6M4R-CGM3-6Q7Q, OSV, Red Hat RH:CVE-2019-15478, CNVD) confirm that status-board is vulnerable; the issue impacts all versions and there is no fix currently available. Mitigation re...
CVE-2019-15479
CVE-2019-15479 concerns Status Board 1.1.81 exhibiting a Cross‑Site Scripting (XSS) in the dashboard.ts path. The root cause is insufficient sanitization when concatenating user-controlled input into the error/dashboard rendering flow, enabling arbitrary JavaScript execution in a victim’s browser...