CVE-2019-6029

MEDIUM WAF: High
CVSS 6.1 Published: 2019-12-26
CWE-79

Cross-site scripting vulnerability in Custom Body Class 0.6.0 and earlier allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.

WAF Coverage Analysis

Cross-Site Scripting (XSS) High WAF Coverage

OWASP: A03:2021 Injection

941xxx - XSS / XXE

Affected Software

VendorProductVersion
custom_body_class_projectcustom_body_classup to 0.6.0

References

Back to CVE Database