Rambox
1 CVEs
product
Monthly
There is a stored XSS in Rambox 0.6.9 that can lead to code execution. Rated critical severity (CVSS 9.0), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.
RCE
Node.js
XSS
Command Injection
Rambox
NVD
GitHub
CVSS 3.1
9.0
EPSS
3.0%
CVE-2019-17625
npm
EPSS 3%
CVSS 9.0
CRITICAL
POC
Act Now
There is a stored XSS in Rambox 0.6.9 that can lead to code execution. Rated critical severity (CVSS 9.0), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.
RCE
Node.js
XSS
+2
NVD
GitHub