Skip to main content

Yellow

2 CVEs product

Monthly

CVE-2018-10758 MEDIUM POC This Month

The edit/ URI in Datenstrom Yellow 0.7.3 has CSRF via a delete action that can delete articles. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

CSRF Yellow
NVD GitHub
CVSS 3.0
6.5
EPSS
0.5%
CVE-2018-10726 MEDIUM POC This Month

A stored XSS vulnerability was found in Datenstrom Yellow 0.7.3 via an "Edit page" action. Rated medium severity (CVSS 5.4), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

XSS Yellow
NVD GitHub
CVSS 3.1
5.4
EPSS
0.7%
EPSS 0% CVSS 6.5
MEDIUM POC This Month

The edit/ URI in Datenstrom Yellow 0.7.3 has CSRF via a delete action that can delete articles. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

CSRF Yellow
NVD GitHub
EPSS 1% CVSS 5.4
MEDIUM POC This Month

A stored XSS vulnerability was found in Datenstrom Yellow 0.7.3 via an "Edit page" action. Rated medium severity (CVSS 5.4), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

XSS Yellow
NVD GitHub

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy