Lucene search
Veracode Vulnerability DatabaseVERACODE:21573HistorySep 25, 2019 - 3:11 a.m.
Cross-site Scripting (XSS)
2019-09-2503:11:50
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
6
0.001 Low
EPSS
Percentile
37.4%
devise_token_auth is vulnerable to cross-site scripting (XSS). The vulnerability exists as the omniauth failure endpoint is vulnerable through the message parameter.
| CPE | Name | Operator | Version |
|---|---|---|---|
| devise_token_auth | le | 1.1.2 |
Related
osv
osv
CVE-2019-16751
2019-09-24 18:15:11
Devise Token Auth vulnerable to Cross-site Scripting
2022-05-24 16:56:43
prion
prion
Cross site scripting
2019-09-24 18:15:00
cve
cve
CVE-2019-16751
2019-09-24 18:15:11
github
github
Devise Token Auth vulnerable to Cross-site Scripting
2022-05-24 16:56:43
nvd
nvd
CVE-2019-16751
2019-09-24 18:15:11
cvelist
cvelist
CVE-2019-16751
2019-09-24 17:14:08