Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
4.3
CVSSv2
CVE-2019-20517
Published: 19/03/2020 Updated: 19/03/2020
CVSS v2 Base Score: 4.3 | Impact Score: 2.9 | Exploitability Score: 8.6
CVSS v3 Base Score: 6.1 | Impact Score: 2.7 | Exploitability Score: 2.8
VMScore: 383
Vector: AV:N/AC:M/Au:N/C:N/I:P/A:N
Subscribe to Frappe
Vulnerability Summary
ERPNext 11.1.47 allows reflected XSS via the PATH_INFO to the contact/ URI.
Vulnerability Trend
Vulnerable Product
Search on Vulmon
Subscribe to Product
frappe erpnext 11.1.47
References
CWE-79
https://www.netsparker.com/web-applications-advisories/ns-19-017-cross-site-scripting-in-erpnext/
https://nvd.nist.gov
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-27977
IMAP
local users
CVE-2024-32038
CVE-2023-49963
CVE-2023-22869
CVE-2024-31497
local
CVE-2024-2961
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
Vulmon