exploitDog

CVE-2019-15120

Опубликовано: 16 авг. 2019

Источник: nvd

CVSS3: 5.4

CVSS2: 3.5

EPSS Низкий

Описание

The Kunena extension before 5.1.14 for Joomla! allows XSS via BBCode.

Ссылки

https://github.com/h3llraiser/CVE-2019-15120
Exploit
Third Party Advisory
https://vel.joomla.org/resolved/2260-kunena-5-0-x-5-1-14-xss-cross-site-scripting
Third Party Advisory
https://www.kunena.org/blog/207-kunena-5-1-14-released
Release Notes
https://github.com/h3llraiser/CVE-2019-15120
Exploit
Third Party Advisory
https://vel.joomla.org/resolved/2260-kunena-5-0-x-5-1-14-xss-cross-site-scripting
Third Party Advisory
https://www.kunena.org/blog/207-kunena-5-1-14-released
Release Notes

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:kunena:kunena:*:*:*:*:*:joomla\!:*:*

Версия до 5.1.14 (исключая)

EPSS

Процентиль: 80%

0.01427

Низкий

5.4 Medium

CVSS3

3.5 Low

CVSS2

Дефекты

CWE-79

Связанные уязвимости

GHSA-3m5j-r9wr-wr68

CVSS3: 5.4

github

больше 3 лет назад

The Kunena extension before 5.1.14 for Joomla! allows XSS via BBCode.

EPSS

Процентиль: 80%

0.01427

Низкий

5.4 Medium

CVSS3

3.5 Low

CVSS2

Дефекты

CWE-79