Verdaccio
1 CVEs
product
Monthly
verdaccio before 3.12.0 allows XSS. Rated medium severity (CVSS 6.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.
XSS
Verdaccio
NVD
GitHub
CVSS 3.0
6.1
EPSS
0.9%
CVE-2019-14772
npm
EPSS 1%
CVSS 6.1
MEDIUM
POC
PATCH
This Month
verdaccio before 3.12.0 allows XSS. Rated medium severity (CVSS 6.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.
XSS
Verdaccio
NVD
GitHub