{"id":"CVE-2019-15478","details":"Status Board 1.1.81 has reflected XSS via logic.ts.","aliases":["GHSA-6m4r-cgm3-6q7q"],"modified":"2026-04-11T21:07:57.292693Z","published":"2019-08-26T12:15:11.467Z","references":[{"type":"FIX","url":"https://github.com/jameswlane/status-board/pull/949"}],"affected":[{"ranges":[{"type":"GIT","repo":"https://github.com/status-board/status-board","events":[{"introduced":"0"},{"last_affected":"4c8205707e62af90329f3dd224b86aecec98653b"}],"database_specific":{"source":"CPE_FIELD","extracted_events":[{"introduced":"0"},{"last_affected":"1.1.81"}],"cpe":"cpe:2.3:a:status_board_project:status_board:1.1.81:*:*:*:*:*:*:*"}}],"versions":["v1.0.0","v1.0.1","v1.1.0","v1.1.1","v1.1.10","v1.1.11","v1.1.12","v1.1.13","v1.1.14","v1.1.15","v1.1.16","v1.1.17","v1.1.18","v1.1.2","v1.1.20","v1.1.21","v1.1.22","v1.1.23","v1.1.24","v1.1.25","v1.1.26","v1.1.27","v1.1.28","v1.1.29","v1.1.3","v1.1.30","v1.1.31","v1.1.32","v1.1.33","v1.1.34","v1.1.35","v1.1.36","v1.1.37","v1.1.38","v1.1.39","v1.1.4","v1.1.40","v1.1.41","v1.1.42","v1.1.43","v1.1.44","v1.1.45","v1.1.46","v1.1.47","v1.1.48","v1.1.49","v1.1.5","v1.1.50","v1.1.51","v1.1.52","v1.1.53","v1.1.54","v1.1.55","v1.1.56","v1.1.57","v1.1.58","v1.1.59","v1.1.6","v1.1.60","v1.1.61","v1.1.62","v1.1.63","v1.1.64","v1.1.65","v1.1.66","v1.1.67","v1.1.68","v1.1.69","v1.1.7","v1.1.70","v1.1.71","v1.1.72","v1.1.73","v1.1.74","v1.1.75","v1.1.76","v1.1.77","v1.1.78","v1.1.79","v1.1.8","v1.1.80","v1.1.81","v1.1.9"],"database_specific":{"source":"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2019-15478.json"}}],"schema_version":"1.7.5","severity":[{"type":"CVSS_V3","score":"CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N"}]}