Unrated severityOSV Advisory· Published Sep 28, 2018· Updated Aug 5, 2024
CVE-2018-17571
CVE-2018-17571
Description
Vanilla before 2.6.1 allows XSS via the email field of a profile.
Affected products
2list+ 1 more
- (no CPE)range: list
- (no CPE)range: <2.6.1
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
1- hackerone.com/reports/361957mitrex_refsource_MISC
News mentions
0No linked articles in our index yet.