← back
CVE-2019-6804

CVE-2019-6804

EPSS 5.3%
An XSS issue was discovered on the Job Edit page in Rundeck Community Edition before 3.0.13, related to assets/javascripts/workflowStepEditorKO.js and views/execution/_wfitemEdit.gsp.
Affected products
n/a · n/a
public PoCs found2
cve_referencewww.exploit-db.com/exploits/46251/unverifiedexploitdbwww.exploit-db.com/exploits/46251unverified
⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
https://docs.rundeck.com/docs/history/version-3.0.13.htmlhttps://github.com/rundeck/rundeck/issues/4406https://www.exploit-db.com/exploits/46251/