Lucene search
Veracode Vulnerability DatabaseVERACODE:6948HistoryJul 05, 2018 - 5:21 a.m.
Cross-site Scripting (XSS)
2018-07-0505:21:19
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
5
0.001 Low
EPSS
Percentile
38.3%
buttle is vulnerable to cross-site scripting (XSS) attacks. The library does not sanitize filenames, allowing a malicious user to inject and execute arbitrary Javascript using a iframe tag as a filename.
Related
osv
osv
Cross-Site Scripting in buttle
2019-04-08 15:18:38
cve
cve
CVE-2019-5422
2019-04-03 15:29:01
github
github
Cross-Site Scripting in buttle
2019-04-08 15:18:38
prion
prion
Cross site scripting
2019-04-03 15:29:00
nodejs
nodejs
Command Injection
2018-05-16 20:00:30
Cross-Site Scripting
2019-06-19 20:03:20
nvd
nvd
CVE-2019-5422
2019-04-03 15:29:01
hackerone
hackerone
cvelist
cvelist
CVE-2019-5422
2019-04-03 14:21:40