Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
veracodeVeracode Vulnerability DatabaseVERACODE:21380
HistoryAug 27, 2019 - 1:57 a.m.

Cross-site Scripting (XSS)

2019-08-2701:57:30
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
10

EPSS

0.001

Percentile

29.3%

JSON

bolt/bolt is vulnerable to cross-site scripting (XSS). The vulnerability exists as the values of parentPath and folderName in FilesystemManager.php is not sanitized, allowing a remote attacker to inject arbitrary Javascript into a victim’s browser through the affected parameters.

Related

cvelist 1
osv 2
github 1
cbl_mariner 1
cve 1
nvd 1
prion 1
rosalinux 1
cvelist
cvelist
CVE-2019-15485
2019-08-23 12:30:42
osv
osv
CVE-2019-15485
2019-08-23 13:15:11
Cross-site Scripting in Bolt
2019-11-08 15:28:11
github
github
Cross-site Scripting in Bolt
2019-11-08 15:28:11
cbl_mariner
cbl_mariner
CVE-2019-15485 affecting package bolt 0.9.2-2
2024-09-21 03:20:41
cve
cve
CVE-2019-15485
2019-08-23 13:15:11
nvd
nvd
CVE-2019-15485
2019-08-23 13:15:11
prion
prion
Design/Logic Flaw
2019-08-23 13:15:00
rosalinux
rosalinux
Advisory ROSA-SA-2021-1809
2021-07-02 16:34:28

EPSS

0.001

Percentile

29.3%

JSON
Related for VERACODE:21380
cvelist1osv2github1cbl_mariner1cve1nvd1prion1rosalinux1