Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
4.3
CVSSv2
CVE-2019-20515
Published: 19/03/2020 Updated: 19/03/2020
CVSS v2 Base Score: 4.3 | Impact Score: 2.9 | Exploitability Score: 8.6
CVSS v3 Base Score: 6.1 | Impact Score: 2.7 | Exploitability Score: 2.8
VMScore: 383
Vector: AV:N/AC:M/Au:N/C:N/I:P/A:N
Vulnerability Summary
ERPNext 11.1.47 allows reflected XSS via the PATH_INFO to the addresses/ URI.
Subscribe to Erpnext
Vulnerability Trend
Vulnerable Product
Search on Vulmon
Subscribe to Product
frappe erpnext 11.1.47
References
CWE-79
https://www.netsparker.com/web-applications-advisories/ns-19-017-cross-site-scripting-in-erpnext/
https://nvd.nist.gov
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2018-25103
CVE-2024-36279
CVE-2024-38457
elevation of privilege
CVE-2024-27801
CVE-2024-30103
NULL pointer dereference
CVE-2024-6057
XML injection
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started