Yourls : Security Vulnerabilities, CVEs, (XSS)

CVE-2021-3785

yourls is vulnerable to Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')
Max CVSS
8.8
EPSS Score
0.05%
Published
2021-09-15
Updated
2021-09-23

CVE-2021-3783

yourls is vulnerable to Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')
Max CVSS
6.6
EPSS Score
0.06%
Published
2021-09-15
Updated
2021-09-23

CVE-2020-27388

Multiple Stored Cross Site Scripting (XSS) vulnerabilities exist in the YOURLS Admin Panel, Versions 1.5 - 1.7.10. An authenticated user must modify a PHP plugin with a malicious payload and upload it, resulting in multiple stored XSS issues.
Max CVSS
5.4
EPSS Score
0.06%
Published
2020-10-23
Updated
2020-10-28

CVE-2014-8488

Cross-site scripting (XSS) vulnerability in the administrator panel in Yourls 1.7 allows remote attackers to inject arbitrary web script or HTML via a URL that is processed by the Shorten functionality.
Max CVSS
4.3
EPSS Score
0.21%
Published
2014-12-10
Updated
2015-09-03
4 vulnerabilities found
This web site uses cookies for managing your session, storing preferences, website analytics and additional purposes described in our privacy policy.
By using this web site you are agreeing to CVEdetails.com terms of use!
Accept Close