Stored Cross-Site Scripting (XSS) Vulnerability in seefl v0.1.1 via Malicious Filename in Directory Listing

Stored Cross-Site Scripting (XSS) Vulnerability in seefl v0.1.1 via Malicious Filename in Directory Listing

CVE-2019-15603 · MEDIUM Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N

The seefl package v0.1.1 is vulnerable to a stored Cross-Site Scripting (XSS) vulnerability via a malicious filename rendered in a directory listing.

Learn more about our Web Application Penetration Testing UK.