CVE-2018-13065 in Trustwave and OWASP Products
Published on July 3, 2018
ModSecurity 3.0.0 has XSS via an onerror attribute of an IMG element. NOTE: a third party has disputed this issue because it may only apply to environments without a Core Rule Set configured
Products Associated with CVE-2018-13065
stack.watch emails you whenever new vulnerabilities are published in Trustwave Modsecurity or OWASP Modsecurity. Just hit a watch button to start following.
Exploit Probability
EPSS
0.28%
Percentile
51.50%
EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.