CVE-2018-6588

CVE-2018-6588

Vendor Ca Technologies

Product CA API Developer Portal

Weakness CWE-79 · XSS

Published March 29, 2018

Last update September 16, 2024

View on NVD All CVEs

CVSS base score

—

What the vulnerability does

01Description

CA API Developer Portal 3.5 up to and including 3.5 CR5 has a reflected cross-site scripting vulnerability related to the apiExplorer.

Key dates

02Disclosure timeline

March 29, 2018 CVE published

September 16, 2024 Record updated

External resources

03References

NVD — National Vulnerability Database https://nvd.nist.gov/vuln/detail/CVE-2018-6588 CWE — Common Weakness Enumeration https://cwe.mitre.org/data/definitions/79.html

Related vulnerabilities

04Related CVE

CVE-2024-2479 MHA Sistemas arMHAzena Cadastro Page cross site scripting CVE-2022-22123 Halo CMS - Stored Cross-Site Scripting (XSS) in Article's Title CVE-2025-14046 Insufficient HTML Sanitization Allows User-Controlled DOM Elements to Overwrite Server-Initialized Data Islands and Trigger Unintended Server-Side POST Requests CVE-2022-45448 Cross-site Scripting in M4 PDF plugin for Prestashop sites CVE-2025-6067 Easy Social Feed – Social Photos Gallery – Post Feed – Like Box <= 6.6.7 - Authenticated (Contributor+) DOM-Based Stored Cross-Site Scripting