Skip to main content
CVE-2019-10723 MEDIUM POC This Month

An issue was discovered in PoDoFo 0.9.6. Rated medium severity (CVSS 5.5), this vulnerability is no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Denial Of Service Podofo
NVD
CVSS 3.0
5.5
EPSS
1.0%
CVE-2019-10261 MEDIUM POC This Month

CentOS Web Panel (CWP) 0.9.8.789 is vulnerable to Stored/Persistent XSS for the "Name Server 1" and "Name Server 2" fields via a "DNS Functions" "Edit Nameservers IPs" action. Rated medium severity (CVSS 4.8), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

XSS Centos Web Panel
NVD Exploit-DB
CVSS 3.0
4.8
EPSS
2.4%
CVE-2019-5422 MEDIUM This Month

XSS in buttle npm package version 0.2.0 causes execution of attacker-provided code in the victim's browser when an attacker creates an arbitrary file on the server. Rated medium severity (CVSS 6.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

XSS Node.js Buttle
NVD
CVSS 3.0
6.1
EPSS
1.2%

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy