CVE-2019-5422 - AskarLabs CVE Database

CVE-2019-5422

Vendor Npm, Inc.

Product buttle

Weakness CWE-79 · XSS

Published April 3, 2019

Last update August 4, 2024

View on NVD All CVEs

CVSS base score

—

What the vulnerability does

01Description

XSS in buttle npm package version 0.2.0 causes execution of attacker-provided code in the victim's browser when an attacker creates an arbitrary file on the server.

Key dates

02Disclosure timeline

April 3, 2019 CVE published

August 4, 2024 Record updated

External resources

03References

NVD — National Vulnerability Database https://nvd.nist.gov/vuln/detail/CVE-2019-5422 CWE — Common Weakness Enumeration https://cwe.mitre.org/data/definitions/79.html

Related vulnerabilities

04Related CVE

CVE-2023-5581 SourceCodester Medicine Tracker System index.php cross site scripting CVE-2023-3660 Campcodes Retro Cellphone Online Store add_user_modal.php cross site scripting CVE-2024-4256 Techkshetra Info Solutions Savsoft Quiz Category Page editCategory cross site scripting CVE-2023-39514 Stored Cross-site Scripting on graphs.php data template formated name view in Cacti CVE-2023-2425 SourceCodester Simple Student Information System Add New Course cross site scripting