Medium severity6.1NVD Advisory· Published Aug 20, 2018· Updated Jun 17, 2026
CVE-2018-1000642
CVE-2018-1000642
Description
FlightAirMap version <=v1.0-beta.21 contains a Cross Site Scripting (XSS) vulnerability in GET variable used within registration sub menu page that can result in unauthorised actions and access to data, stealing session information. This vulnerability appears to have been fixed in after commit 22b09a3.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- Range: <=1.0-beta.21
- Range: <=v1.0-beta.21
Patches
Vulnerability mechanics
References
2- 0dd.zone/2018/08/05/FlightAirMap-Reflected-XSS/nvdThird Party Advisory
- github.com/Ysurac/FlightAirMap/issues/410nvdThird Party Advisory
News mentions
0No linked articles in our index yet.