Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
ubuntucveUbuntu.comUB:CVE-2015-1370
HistoryJan 27, 2015 - 12:00 a.m.

CVE-2015-1370

2015-01-2700:00:00
ubuntu.com
ubuntu.com
9

CVSS2

4.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

EPSS

0.004

Percentile

72.8%

JSON

Incomplete blacklist vulnerability in marked 0.3.2 and earlier for Node.js
allows remote attackers to conduct cross-site scripting (XSS) attacks via a
vbscript tag in a link.

OSVersionArchitecturePackageVersionFilename
ubuntu16.04noarchnode-marked< anyUNKNOWN

Related

prion 1
debiancve 1
cvelist 1
nvd 1
osv 1
nodejs 1
github 1
cve 1
prion
prion
Cross site scripting
2015-01-27 20:04:00
debiancve
debiancve
CVE-2015-1370
2015-01-27 20:04:27
cvelist
cvelist
CVE-2015-1370
2015-01-27 17:00:00
nvd
nvd
CVE-2015-1370
2015-01-27 20:04:27
osv
osv
VBScript Content Injection in marked
2017-10-24 18:33:36
nodejs
nodejs
VBScript Content Injection
2015-10-17 19:41:46
github
github
VBScript Content Injection in marked
2017-10-24 18:33:36
cve
cve
CVE-2015-1370
2015-01-27 20:04:27

CVSS2

4.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

EPSS

0.004

Percentile

72.8%

JSON
Related for UB:CVE-2015-1370
prion1debiancve1cvelist1nvd1osv1nodejs1github1cve1