CVE-2014-5027
Reviewboard Review Board - XSS
Title source: ruleDescription
Cross-site scripting (XSS) vulnerability in Review Board 1.7.x before 1.7.27 and 2.0.x before 2.0.4 allows remote attackers to inject arbitrary web script or HTML via a query parameter to a diff fragment page.
References (7)
Scores
EPSS
0.0052
EPSS Percentile
66.4%
Details
CWE
CWE-79
Status
published
Products (39)
reviewboard/review_board
reviewboard/review_board
reviewboard/review_board
reviewboard/review_board
reviewboard/review_board
reviewboard/review_board
reviewboard/review_board
reviewboard/review_board
reviewboard/review_board
reviewboard/review_board
... and 29 more
Published
Jul 25, 2014
Tracked Since
Feb 18, 2026