{"id":"CVE-2019-15810","details":"Insufficient sanitization during device search in Netdisco 2.042010 allows for reflected XSS via manipulation of a URL parameter.","modified":"2026-02-14T07:23:39.997470Z","published":"2019-09-30T17:15:11.720Z","references":[{"type":"ADVISORY","url":"https://github.com/netdisco/netdisco/commit/deb9b62c7f839f5e41aa4d620bcdac5f9321a8a3"},{"type":"ADVISORY","url":"https://github.com/netdisco/netdisco/commits/master"},{"type":"FIX","url":"https://github.com/netdisco/netdisco/commit/deb9b62c7f839f5e41aa4d620bcdac5f9321a8a3"},{"type":"FIX","url":"https://github.com/netdisco/netdisco/commits/master"}],"affected":[{"ranges":[{"type":"GIT","repo":"https://github.com/netdisco/netdisco","events":[{"introduced":"0"},{"fixed":"deb9b62c7f839f5e41aa4d620bcdac5f9321a8a3"}]}],"versions":["0.023001","2.001000_001","2.002000","2.003002","2.004000","2.004001","2.004002","2.005000_001","2.005000_002","2.005000_003","2.005000_004","2.006000","2.007000_001","2.007000_002","2.008001","2.008002","2.00_008","2.00_009","2.00_010","2.00_011","2.00_012","2.010000","2.010002","2.010004","2.011000","2.012000","2.012001","2.012002","2.012005","2.012006","2.013001","2.014000","2.015000","2.016001","2.016002","2.016003","2.017000","2.018000","2.019000","2.019001","2.019002","2.019003","2.020000","2.020001","2.020002","2.020003_001","2.020003_002","2.020003_003","2.021000","2.022000","2.024000","2.024001","2.024002","2.024003","2.024003_001","2.025000_001","2.025001","2.026001_001","2.026001_002","2.026001_003","2.027000","2.027001","2.027002","2.027003","2.027004","2.027005_001","2.027006","2.027007","2.027008_001","2.028000","2.028001","2.028003","2.028004","2.028005","2.028006","2.028007","2.028008","2.028011","2.028012","2.028013","2.029000_001","2.029000_002","2.029001","2.029002","2.029004","2.029005","2.029006","2.029007","2.029009","2.029010","2.029011","2.029012","2.029013_001","2.029013_002","2.029014","2.030000","2.031000","2.031001","2.031003","2.031004","2.031005","2.031006","2.031007","2.031008","2.031009","2.031010","2.031011","2.031012","2.032000_001","2.032001","2.032002","2.032003","2.032004","2.032005","2.032006","2.032007","2.033000","2.033001","2.033002","2.033003","2.033004","2.033005","2.033006","2.034000","2.034001","2.034002","2.034003","2.035000","2.035001","2.035002","2.035003","2.035004","2.035005","2.035006","2.035999_001","2.035999_002","2.035999_003","2.035999_004","2.035999_005","2.035999_006","2.035999_007","2.035999_008","2.035999_009","2.035999_010","2.036000","2.036001","2.036002","2.036003","2.036004","2.036005","2.036006","2.036007","2.036008","2.036009","2.036010","2.036011","2.036012_002","2.036012_003","2.037000","2.037001","2.037002","2.037003","2.037005","2.038000","2.038001","2.038002_001","2.038002_002","2.038002_003","2.038003","2.038004","2.038005","2.038006","2.038007","2.038008","2.038009","2.038010","2.038011","2.038012","2.038013","2.038014","2.038015","2.038016","2.038017","2.038018","2.038019","2.038020","2.038021","2.038022","2.038023","2.038024","2.038025","2.038026","2.038027","2.038028","2.038028.001","2.038028.002","2.038028.003","2.038029_001","2.038029_002","2.038029_003","2.038030","2.038031","2.038032","2.038033","2.038034","2.038035","2.039000","2.039001","2.039002","2.039003","2.039004","2.039005","2.039006","2.039007","2.039009","2.039010","2.039011","2.039012","2.039013","2.039014","2.039015","2.039016","2.039017","2.039018","2.039019","2.039020","2.039021","2.039022","2.039023","2.039024","2.039026","2.039027","2.039028","2.039029","2.039030","2.039031","2.039032","2.039033","2.040000","2.040001","2.040002","2.040003","2.040004","2.040005","2.040006","2.040007","2.041000","2.041001","2.041002","2.042000","2.042001","2.042002","2.042003","2.042004","2.042005","2.042006","2.042007","2.042008","2.042009","2.042010","2.043000","2.043001","2_01_001","archive/em-datatables-v1_10_0","archive/og-forking-daemon","archive/og-freeports-after-reboot","archive/og-logged-in-user-fix","archive/og-mce-daemon","archive/og-path-reworking","archive/og-redirect-filehandles-fix","v0.1","v0.2","v0.3","v0.4","v0.5","v0.6","v0.7"],"database_specific":{"source":"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2019-15810.json"}}],"schema_version":"1.7.3","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N"}]}