Lucene search
Veracode Vulnerability DatabaseVERACODE:13291HistoryFeb 04, 2019 - 12:54 a.m.
Cross-site Scripting (XSS)
2019-02-0400:54:49
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
1
0.001 Low
EPSS
Percentile
37.5%
html-pages is vulnerable to cross-site scripting (XSS) attacks. The vulnerability exists as the value of name in index.hbs is not sanitized and can be used to inject arbitrary Javascript into a victim’s browser.
| CPE | Name | Operator | Version |
|---|---|---|---|
| html-pages | le | 2.1.3 |
References
Related
nodejs
nodejs
Cross-Site Scripting
2019-06-19 14:48:11
prion
prion
Cross site scripting
2019-02-01 18:29:00
github
github
Cross-Site Scripting in html-pages
2019-02-07 18:14:44
hackerone
hackerone
cve
cve
CVE-2018-16481
2019-02-01 18:29:00
osv
osv
Cross-Site Scripting in html-pages
2019-02-07 18:14:44
cvelist
cvelist
CVE-2018-16481
2019-02-01 18:00:00
nvd
nvd
CVE-2018-16481
2019-02-01 18:29:00