Lucene search
Veracode Vulnerability DatabaseVERACODE:6026HistoryMar 29, 2018 - 2:25 a.m.
Cross-site Scripting (XSS)
2018-03-2902:25:45
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
8
0.001 Low
EPSS
Percentile
43.5%
metascraper is vulnerable to cross-site scripting (XSS) attacks. The library does not sanitize its input, allowing a malicious user to inject and execute arbitrary code by means of a website that is scraped by the library.
| CPE | Name | Operator | Version |
|---|---|---|---|
| metascraper | le | 5.1.1 | |
| metascraper | le | 5.1.1 |
Related
nodejs
nodejs
Cross-Site Scripting
2018-04-24 20:47:14
osv
osv
metascraper before v5.2.0 vulnerable to stored cross-site scripting
2018-08-08 22:25:57
CVE-2018-3773
2018-07-30 18:29:00
nvd
nvd
CVE-2018-3773
2018-07-30 18:29:00
cve
cve
CVE-2018-3773
2018-07-30 18:29:00
github
github
metascraper before v5.2.0 vulnerable to stored cross-site scripting
2018-08-08 22:25:57
cvelist
cvelist
CVE-2018-3773
2018-03-28 00:00:00
prion
prion
Cross site scripting
2018-07-30 18:29:00
hackerone
hackerone