CVE-2018-16551
NONE EPSS 47.2%
Published Sep 5, 20187y ago ยท Modified Jun 17, 20262w ago
Published Sep 5, 2018 7y ago
Last Modified Jun 17, 2026 2w ago
Description
LavaLite 5.5 has XSS via a /edit URI, as demonstrated by client/job/job/Zy8PWBekrJ/edit.
Threat Intelligence
EPSS Exploit Probability
47.2% percentile
Exploit & Patch Status
Public Exploit Known
No Patch Available
Weaknesses 1
CWE-79 Cross-site Scripting Injection
Affected Products 1
| Vendor | Product | Version | Range |
|---|---|---|---|
| lavalite | lavalite | 5.5.0 | any |
References 1
- github.com https://github.com/LavaLite/cms/issues/259
Remediation
No remediation data recorded yet
Check vendor advisories and the NVD entry for patch availability.