Medium severity5.4OSV Advisory· Published Sep 5, 2018· Updated Jun 17, 2026
CVE-2018-15917
CVE-2018-15917
Description
Persistent cross-site scripting (XSS) issues in Jorani 0.6.5 allow remote attackers to inject arbitrary web script or HTML via the language parameter to session/language.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2Patches
Vulnerability mechanics
References
3- hackpuntes.com/cve-2018-15917-jorani-leave-management-system-0-6-5-cross-site-scripting-persistente/nvdExploitThird Party Advisory
- www.exploit-db.com/exploits/45338/nvdExploitThird Party AdvisoryVDB Entry
- github.com/bbalet/jorani/issues/254nvdThird Party Advisory
News mentions
0No linked articles in our index yet.