CVE-2018-19598 - CERT CVE

  1. CVE-2018-19598

ID CVE-2018-19598
Sažetak Statamic 2.10.3 allows XSS via First Name or Last Name to the /users URI in an 'Add new user' request.
Reference
CVSS
Base: 3.5
Impact: 2.9
Exploitability:6.8
Pristup
VektorSloženostAutentikacija
NETWORK MEDIUM SINGLE
Impact
PovjerljivostCjelovitostDostupnost
NONE PARTIAL NONE
CVSS vektor AV:N/AC:M/Au:S/C:N/I:P/A:N
Zadnje važnije ažuriranje 26-02-2019 - 16:11
Objavljeno 19-12-2018 - 19:29