Lucene search
Veracode Vulnerability DatabaseVERACODE:13607HistoryApr 08, 2019 - 2:57 a.m.
Cross-site Scripting (XSS)
2019-04-0802:57:49
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
3
0.002 Low
EPSS
Percentile
53.7%
roundup is vulnerable to cross-site scripting (XSS) attacks. The vulnerability exists as the value of uri is not sanitized, allowing XSS attacks to occur in frontends/roundup.cgi and roundup/cgi/wsgi_handler.py.
Related
osv
osv
PYSEC-2019-201
2019-04-06 20:29:00
roundup - security update
2019-04-07 00:00:00
Moderate severity vulnerability that affects roundup
2019-04-09 19:47:14
openvas
openvas
Debian: Security Advisory (DLA-1750-1)
2019-04-08 00:00:00
nessus
nessus
Debian DLA-1750-1 : roundup security update
2019-04-08 00:00:00
ubuntucve
ubuntucve
CVE-2019-10904
2019-04-06 00:00:00
nvd
nvd
CVE-2019-10904
2019-04-06 20:29:00
cve
cve
CVE-2019-10904
2019-04-06 20:29:00
github
github
Moderate severity vulnerability that affects roundup
2019-04-09 19:47:14
prion
prion
Design/Logic Flaw
2019-04-06 20:29:00
cvelist
cvelist
CVE-2019-10904
2019-04-06 19:40:05
debian
debian
[SECURITY] [DLA 1750-1] roundup security update
2019-04-07 12:33:23