Show filters
2 Total Results
Displaying 1-2 of 2
Sort by:
Attacker Value
Unknown
CVE-2019-6278
Disclosure Date: January 14, 2019 (last updated November 27, 2024)
XSS exists in JPress v1.0.4 via Markdown input, or Markdown input with the code input option.
0
Attacker Value
Unknown
CVE-2018-19170
Disclosure Date: November 11, 2018 (last updated November 27, 2024)
In JPress v1.0-rc.5, there is stored XSS via each of the first three input fields to the starter-tomcat-1.0/admin/setting URI, as demonstrated by the web_name parameter.
0
