CVE-2020-19611

MEDIUM

RackTables 0.21.2 - Cross-Site Scripting via Redirect Module op Parameter

Title source: llm
STIX 2.1

Description

Cross Site Scripting (XSS) in redirect module of Racktables version 0.21.2, allows an attacker to inject arbitrary web script or HTML via the op parameter.

References (2)

Core 2
Core References
Not Applicable, URL Repurposed x_refsource_misc
http://racktables.com

Scores

CVSS v3 6.1
EPSS 0.0063
EPSS Percentile 45.6%
Attack Vector NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N

Details

CWE
CWE-79
Status published
Products (1)
racktables_project/racktables 0.21.2
Published Dec 07, 2021
Tracked Since Feb 18, 2026