VYPR
Unrated severityOSV Advisory· Published Nov 22, 2018· Updated Aug 5, 2024

CVE-2018-19433

CVE-2018-19433

Description

ShowDoc 2.4.1 has XSS via the lang parameter because install/database.php mishandles the $cur_lang value.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2
  • Star7th/ShowdocOSV2 versions
    v1.0.0, v1.0.1, v1.0.2, …+ 1 more
    • (no CPE)range: v1.0.0, v1.0.1, v1.0.2, …
    • (no CPE)range: <=2.4.1

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.