Iobroker Web
1 CVEs
product
Monthly
Characters in the GET url path are not properly escaped and can be reflected in the server response. Rated medium severity (CVSS 6.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.
XSS
Iobroker Web
NVD
CVSS 3.1
6.1
EPSS
0.7%
CVE-2019-10771
npm
EPSS 1%
CVSS 6.1
MEDIUM
PATCH
This Month
Characters in the GET url path are not properly escaped and can be reflected in the server response. Rated medium severity (CVSS 6.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.
XSS
Iobroker Web
NVD