Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
4.3
CVSSv2
CVE-2019-17488
Published: 10/10/2019 Updated: 15/10/2019
CVSS v2 Base Score: 4.3 | Impact Score: 2.9 | Exploitability Score: 8.6
CVSS v3 Base Score: 6.1 | Impact Score: 2.7 | Exploitability Score: 2.8
VMScore: 383
Vector: AV:N/AC:M/Au:N/C:N/I:P/A:N
Vulnerability Summary
b3log Symphony (aka Sym) prior to 3.6.0 has XSS via the HTTP User-Agent header.
Subscribe to B3log
Vulnerability Trend
Vulnerable Product
Search on Vulmon
Subscribe to Product
b3log symphony
References
CWE-79
https://github.com/b3log/symphony/issues/970
https://nvd.nist.gov
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-23316
SQL injection
type confusion
CVE-2024-20697
CVE-2024-4344
local
CVE-2024-30043
CVE-2024-3821
CVE-2024-5041
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started