Invenio App
1 CVEs
product
Monthly
invenio-app before 1.1.1 allows host header injection. Rated medium severity (CVSS 6.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.
Code Injection
Invenio App
NVD
GitHub
CVSS 3.0
6.1
EPSS
0.9%
CVE-2019-1020006
PyPI
EPSS 1%
CVSS 6.1
MEDIUM
POC
PATCH
This Month
invenio-app before 1.1.1 allows host header injection. Rated medium severity (CVSS 6.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.
Code Injection
Invenio App
NVD
GitHub