Lucene search
Veracode Vulnerability DatabaseVERACODE:21378HistoryAug 27, 2019 - 1:30 a.m.
Cross-Site Scripting (XSS)
2019-08-2701:30:55
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
5
0.001 Low
EPSS
Percentile
37.5%
laracom is vulnerable to cross-site scripting (XSS) attacks. A remote attacker could trick a user into browsing to a URL which would trigger the XSS on the search form and steal the user’s cookie or capture keyboard strokes and eventually take over the user account.
| CPE | Name | Operator | Version |
|---|---|---|---|
| jsdecena/laracom | le | 1.4.11 | |
| jsdecena/laracom | le | 1.4.11 |
Related
cvelist
cvelist
CVE-2019-15489
2019-08-26 11:57:41
nvd
nvd
CVE-2019-15489
2019-08-26 12:15:11
github
github
laracom Cross-site Scripting
2022-05-24 22:00:24
cve
cve
CVE-2019-15489
2019-08-26 12:15:11
prion
prion
Cross site scripting
2019-08-26 12:15:00
huntr
huntr
Cross-site Scripting (XSS) - Generic in jsdecena/laracom
2020-09-13 00:00:00
osv
osv
CVE-2019-15489
2019-08-26 12:15:11
laracom Cross-site Scripting
2022-05-24 22:00:24