Vulnerability Description
A vulnerability was found in OSM Lab show-me-the-way. It has been rated as problematic. This issue affects some unknown processing of the file js/site.js. The manipulation leads to cross site scripting. The attack may be initiated remotely. The patch is named 4bed3b34dcc01fe6661f39c0e5d2285b340f7cac. It is recommended to apply a patch to fix this issue. The associated identifier of this vulnerability is VDB-217439.
CVSS Score
LOW
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Show-Me-The-Way Project | Show-Me-The-Way | < 2018-02-19 |
Related Weaknesses (CWE)
References
- https://github.com/osmlab/show-me-the-way/commit/4bed3b34dcc01fe6661f39c0e5d2285Patch
- https://github.com/osmlab/show-me-the-way/pull/57Patch
- https://vuldb.com/?ctiid.217439Permissions RequiredThird Party Advisory
- https://vuldb.com/?id.217439Permissions RequiredThird Party Advisory
- https://github.com/osmlab/show-me-the-way/commit/4bed3b34dcc01fe6661f39c0e5d2285Patch
- https://github.com/osmlab/show-me-the-way/pull/57Patch
- https://vuldb.com/?ctiid.217439Permissions RequiredThird Party Advisory
- https://vuldb.com/?id.217439Permissions RequiredThird Party Advisory
FAQ
What is CVE-2018-25064?
CVE-2018-25064 is a vulnerability with a CVSS score of 3.5 (LOW). A vulnerability was found in OSM Lab show-me-the-way. It has been rated as problematic. This issue affects some unknown processing of the file js/site.js. The manipulation leads to cross site scriptin...
How severe is CVE-2018-25064?
CVE-2018-25064 has been rated LOW with a CVSS base score of 3.5/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2018-25064?
Check the references section above for vendor advisories and patch information. Affected products include: Show-Me-The-Way Project Show-Me-The-Way.