CVE-2020-19611

MEDIUM

Racktables - XSS

Title source: rule
STIX 2.1

Description

Cross Site Scripting (XSS) in redirect module of Racktables version 0.21.2, allows an attacker to inject arbitrary web script or HTML via the op parameter.

References (2)

Core 2
Core References
Not Applicable, URL Repurposed x_refsource_misc
http://racktables.com

Scores

CVSS v3 6.1
EPSS 0.0024
EPSS Percentile 47.2%
Attack Vector NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N

Details

CWE
CWE-79
Status published
Products (1)
racktables_project/racktables 0.21.2
Published Dec 07, 2021
Tracked Since Feb 18, 2026