Vulnerability Details CVE-2018-19598
Statamic 2.10.3 allows XSS via First Name or Last Name to the /users URI in an 'Add new user' request.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.006
EPSS Ranking 42.1%
CVSS Severity
CVSS v3 Score 4.8
CVSS v2 Score 3.5
References