Description
The seefl package v0.1.1 is vulnerable to a stored Cross-Site Scripting (XSS) vulnerability via a malicious filename rendered in a directory listing.
Published: 2020-01-06
Score: 6.1 Medium
EPSS: < 1% Very Low
KEV: No
Impact: n/a
Action: n/a
AI Analysis

Analysis and contextual insights are available on OpenCVE Cloud.

Remediation

No vendor fix or workaround currently provided.

Additional remediation guidance may be available on OpenCVE Cloud.

Tracking

Sign in to view the affected projects.

Advisories
Source ID Title
EUVD EUVD EUVD-2020-0363 The seefl package v0.1.1 is vulnerable to a stored Cross-Site Scripting (XSS) vulnerability via a malicious filename rendered in a directory listing.
Github GHSA Github GHSA GHSA-4g46-5grc-wq49 Cross-Site Scripting in seeftl
References
Link Providers
https://hackerone.com/reports/665302 cve-icon cve-icon
History

No history.

Subscriptions

Seeftl Project Seeftl
cve-icon MITRE

Status: PUBLISHED

Assigner: hackerone

Published:

Updated: 2024-08-05T00:49:13.727Z

Reserved: 2019-08-26T00:00:00.000Z

Link: CVE-2019-15603

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2020-01-06T17:15:13.520

Modified: 2024-11-21T04:29:06.593

Link: CVE-2019-15603

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

No data.

Weaknesses