CVE-2018-12104

Published: 2018-06-17T20:29Z

Last Modified: 2024-11-21T03:44Z

Source: MITRE CVE List

License: MITRE-CVE-TOS

Cross-site scripting (XSS) vulnerability in Airbnb Knowledge Repo 0.7.4 allows remote attackers to inject arbitrary web scripts or HTML via the post comments functionality, as demonstrated by the post/posts/new_report.kp URI. > MITRE Terms of Use apply – see LICENSE‑MITRE.txt