CVE-2019-11281

See a problem?
Please try reporting it to the source first.
Source
https://cve.org/CVERecord?id=CVE-2019-11281
Import Source
https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2019-11281.json
JSON Data
https://api.test.osv.dev/v1/vulns/CVE-2019-11281
Downstream
Published
2019-10-16T16:15:10.340Z
Modified
2026-02-13T00:22:07.717141Z
Severity
  • 4.8 (Medium) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:C/C:L/I:L/A:N CVSS Calculator
Summary
[none]
Details

Pivotal RabbitMQ, versions prior to v3.7.18, and RabbitMQ for PCF, versions 1.15.x prior to 1.15.13, versions 1.16.x prior to 1.16.6, and versions 1.17.x prior to 1.17.3, contain two components, the virtual host limits page, and the federation management UI, which do not properly sanitize user input. A remote authenticated malicious user with administrative access could craft a cross site scripting attack that would gain access to virtual hosts and policy management information.

References

Affected packages

Git / github.com/numpy/numpy

Affected ranges

Type
GIT
Repo
https://github.com/numpy/numpy
Events
Introduced
971e2e89d08deeae0139d3011d15646fdac13c92
Fixed
3dec7099ce38cb189880f6f69df318f35ff9a5ea
Introduced
d9b1e32cb8ef90d6b4a47853241db2a28146a57d
Fixed
ff3df08438d570b0ccdda3f8a008278d8a4ad394

Affected versions

v1.*
v1.16.0
v1.16.1
v1.16.2
v1.16.3
v1.16.4
v1.16.5
v1.17.0
v1.17.1
v1.17.2

Database specific

source 
"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2019-11281.json"