Vulnerabilities
Vulnerable Software
Keystonejs:  Security Vulnerabilities
A cross-site scripting (XSS) vulnerability exists in fields/types/markdown/MarkdownType.js in KeystoneJS before 4.0.0-beta.7 via the Contact Us feature.
CVSS Score
6.1
EPSS Score
0.036
Published
2017-10-24
CSV Injection (aka Excel Macro Injection or Formula Injection) exists in admin/server/api/download.js and lib/list/getCSVData.js in KeystoneJS before 4.0.0-beta.7 via a value that is mishandled in a CSV export.
CVSS Score
8.8
EPSS Score
0.098
Published
2017-10-24


Contact Us

Shodan ® - All rights reserved