Skip to main content

Yunohost

2 CVEs product

Monthly

CVE-2018-11348 MEDIUM POC This Month

Two XSS vulnerabilities are located in the profile edition page of the user panel of the YunoHost 2.7.2 through 2.7.14 web application. Rated medium severity (CVSS 5.4), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

XSS Yunohost
NVD
CVSS 3.0
5.4
EPSS
0.6%
CVE-2018-11347 HIGH POC This Week

The YunoHost 2.7.2 through 2.7.14 web application is affected by one HTTP Response Header Injection. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Code Injection Yunohost
NVD
CVSS 3.0
8.8
EPSS
1.3%
EPSS 1% CVSS 5.4
MEDIUM POC This Month

Two XSS vulnerabilities are located in the profile edition page of the user panel of the YunoHost 2.7.2 through 2.7.14 web application. Rated medium severity (CVSS 5.4), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

XSS Yunohost
NVD
EPSS 1% CVSS 8.8
HIGH POC This Week

The YunoHost 2.7.2 through 2.7.14 web application is affected by one HTTP Response Header Injection. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Code Injection Yunohost
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy