CVE-2019-8361 — MEDIUM (6.1)

Vulnerability Description

PHP Scripts Mall Responsive Video News Script has XSS via the Search Bar. This might, for example, be leveraged for HTML injection or URL redirection.

CVSS Score

6.1

MEDIUM

CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

CHANGED

Confidentiality

LOW

Integrity

LOW

Availability

NONE

Affected Products

Vendor	Product	Versions
Responsive Video News Script Project	Responsive Video News Script	-

Related Weaknesses (CWE)

CWE-79

References

https://hackingvila.wordpress.com/2019/02/16/url-redirection-through-html-injectExploitThird Party Advisory
https://hackingvila.wordpress.com/2019/02/16/xss-vulnerability-in-responsive-vidExploitThird Party Advisory
https://hackingvila.wordpress.com/2019/02/16/url-redirection-through-html-injectExploitThird Party Advisory
https://hackingvila.wordpress.com/2019/02/16/xss-vulnerability-in-responsive-vidExploitThird Party Advisory

FAQ

What is CVE-2019-8361?

CVE-2019-8361 is a vulnerability with a CVSS score of 6.1 (MEDIUM). PHP Scripts Mall Responsive Video News Script has XSS via the Search Bar. This might, for example, be leveraged for HTML injection or URL redirection.

How severe is CVE-2019-8361?

CVE-2019-8361 has been rated MEDIUM with a CVSS base score of 6.1/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2019-8361?

Check the references section above for vendor advisories and patch information. Affected products include: Responsive Video News Script Project Responsive Video News Script.