Skip to main content

Cervantes

2 CVEs product

Monthly

CVE-2024-42055 MEDIUM PATCH This Month

Cervantes through 0.5-alpha allows stored XSS. Rated medium severity (CVSS 5.4), this vulnerability is remotely exploitable, low attack complexity. This Cross-Site Scripting (XSS) vulnerability could allow attackers to inject malicious scripts into web pages viewed by other users.

XSS Cervantes
NVD GitHub
CVSS 3.1
5.4
EPSS
0.4%
CVE-2024-42054 MEDIUM PATCH This Month

Cervantes through 0.5-alpha accepts insecure file uploads. Rated medium severity (CVSS 5.4), this vulnerability is remotely exploitable, low attack complexity. This Unrestricted File Upload vulnerability could allow attackers to upload malicious files that can be executed on the server.

File Upload Cervantes
NVD GitHub
CVSS 3.1
5.4
EPSS
0.4%
EPSS 0% CVSS 5.4
MEDIUM PATCH This Month

Cervantes through 0.5-alpha allows stored XSS. Rated medium severity (CVSS 5.4), this vulnerability is remotely exploitable, low attack complexity. This Cross-Site Scripting (XSS) vulnerability could allow attackers to inject malicious scripts into web pages viewed by other users.

XSS Cervantes
NVD GitHub
EPSS 0% CVSS 5.4
MEDIUM PATCH This Month

Cervantes through 0.5-alpha accepts insecure file uploads. Rated medium severity (CVSS 5.4), this vulnerability is remotely exploitable, low attack complexity. This Unrestricted File Upload vulnerability could allow attackers to upload malicious files that can be executed on the server.

File Upload Cervantes
NVD GitHub

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy