aaron-costello

1 exploit Active since Oct 2019
CVE-2019-18209 WRITEUP MEDIUM WRITEUP
Etherpad-Lite 1.7.5 - Cross-Site Scripting via URL Path
templates/pad.html in Etherpad-Lite 1.7.5 has XSS when the browser does not encode the path of the URL, as demonstrated by Internet Explorer.
CVSS 6.1