Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cvelistApacheCVELIST:CVE-2019-0234
HistoryJul 15, 2019 - 9:13 p.m.

CVE-2019-0234

2019-07-1521:13:14
apache
www.cve.org

0.002 Low

EPSS

Percentile

57.9%

JSON

A Reflected Cross-site Scripting (XSS) vulnerability exists in Apache Roller. Roller’s Math Comment Authenticator did not property sanitize user input and could be exploited to perform Reflected Cross Site Scripting (XSS). The mitigation for this vulnerability is to upgrade to the latest version of Roller, which is now Roller 5.2.3.

CNA Affected

[
  {
    "product": "Apache Roller",
    "vendor": "Apache",
    "versions": [
      {
        "status": "affected",
        "version": "Roller 5.2"
      },
      {
        "status": "affected",
        "version": "5.2.1"
      },
      {
        "status": "affected",
        "version": "5.2.2. The unsupported pre-Roller 5.1 versions may also be affected."
      }
    ]
  }
]

Related

nvd 1
prion 1
openvas 1
cve 1
osv 1
nvd
nvd
CVE-2019-0234
2019-07-15 22:15:12
prion
prion
Cross site scripting
2019-07-15 22:15:00
openvas
openvas
Apache Roller < 5.2.3 XSS Vulnerability
2019-07-23 00:00:00
cve
cve
CVE-2019-0234
2019-07-15 22:15:12
osv
osv
CVE-2019-0234
2019-07-15 22:15:12

0.002 Low

EPSS

Percentile

57.9%

JSON
Related for CVELIST:CVE-2019-0234
nvd1prion1openvas1cve1osv1