Shodan
Vulnerabilities
Vulnerable Software
Roundup-Tracker:  >> Roundup  >> 1.6  Security Vulnerabilities
CVE-2024-39124
In Roundup before 2.4.0, classhelpers (_generic.help.html) allow XSS.
CVSS Score
5.4
EPSS Score
0.002
Published
2024-07-17
CVE-2024-39125
Roundup before 2.4.0 allows XSS via a SCRIPT element in an HTTP Referer header.
CVSS Score
5.4
EPSS Score
0.002
Published
2024-07-17
CVE-2024-39126
Roundup before 2.4.0 allows XSS via JavaScript in PDF, XML, and SVG documents.
CVSS Score
5.4
EPSS Score
0.002
Published
2024-07-17
CVE-2019-10904
Roundup 1.6 allows XSS via the URI because frontends/roundup.cgi and roundup/cgi/wsgi_handler.py mishandle 404 errors.
CVSS Score
6.1
EPSS Score
0.008
Published
2019-04-06


Products
Pricing
Contact Us

Shodan ® - All rights reserved