Lucene search
Veracode Vulnerability DatabaseVERACODE:7411HistorySep 04, 2018 - 2:48 a.m.
Cross-Site Scripting (XSS)
2018-09-0402:48:03
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
4
0.001 Low
EPSS
Percentile
34.7%
mayan-edms is vulnerable to cross-site scripting (XSS) attacks. The window.location.hash value is passed directly to window.location which allows an attacker to execute arbitrary JavaScript code on a victim’s browser.
| CPE | Name | Operator | Version |
|---|---|---|---|
| mayan-edms | le | 3.0.1 |
Related
cvelist
cvelist
CVE-2018-16405
2018-09-03 19:00:00
prion
prion
Cross site scripting
2018-09-03 19:29:00
osv
osv
PYSEC-2018-106
2018-09-03 19:29:00
Moderate severity vulnerability that affects mayan-edms
2018-09-06 03:24:50
PYSEC-2018-16
2018-09-03 19:29:00
nvd
nvd
CVE-2018-16405
2018-09-03 19:29:00
cve
cve
CVE-2018-16405
2018-09-03 19:29:00
github
github
Moderate severity vulnerability that affects mayan-edms
2018-09-06 03:24:50