CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2018-13339

Imperavi Redactor 3 in Angular Redactor 1.1.6, when HTML content mode is used, allows stored XSS, as demonstrated by an onerror attribute of an IMG element, a related issue to CVE-2018-7035.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.003

EPSS Ranking 55.2%

CVSS Severity

CVSS v3 Score 6.1

CVSS v2 Score 4.3

References

https://github.com/TylerGarlick/angular-redactor/issues/77
https://github.com/gleez/cms/issues/796
https://github.com/TylerGarlick/angular-redactor/issues/77
https://github.com/gleez/cms/issues/796

Products affected by CVE-2018-13339

Angular Redactor Project » Angular Redactor » Version: 1.1.6

cpe:2.3:a:angular_redactor_project:angular_redactor:1.1.6

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2018-13339

Products

Pricing

Contact Us