CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Antsword Project: >> Antsword >> 2.0.7 Security Vulnerabilities

CVE-2020-18766

A cross-site scripting (XSS) vulnerability AntSword v2.0.7 can remotely execute system commands.

CVSS Score

9.6

EPSS Score

0.004

Published

2020-10-26

CVE-2019-13970

In antSword before 2.1.0, self-XSS in the database configuration leads to code execution via modules/database/asp/index.js, modules/database/custom/index.js, modules/database/index.js, or modules/database/php/index.js.

CVSS Score

6.1

EPSS Score

0.005

Published

2019-07-19

Page 1

Vulnerabilities

Vulnerable Software

Antsword Project: >> Antsword >> 2.0.7 Security Vulnerabilities

Products

Pricing

Contact Us