Medium severity5.4NVD Advisory· Published Dec 26, 2019· Updated Jun 17, 2026
CVE-2019-20008
CVE-2019-20008
Description
In Archery before 1.3, inserting an XSS payload into a project name (either by creating a new project or editing an existing one) will result in stored XSS on the vulnerability-scan scheduling page.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- Archery/Archerydescription
- Range: <1.3
Patches
Vulnerability mechanics
References
3- github.com/archerysec/archerysec/issues/338nvdExploitIssue TrackingThird Party Advisory
- github.com/archerysec/archerysec/compare/archerysec-v1.2...v1.3nvdRelease NotesThird Party Advisory
- github.com/archerysec/archerysec/releases/tag/v1.3nvdRelease NotesThird Party Advisory
News mentions
0No linked articles in our index yet.