VulnerableCode Vulnerability Details

Staging Environment: Content and features may be unstable or change without notice.

Search for vulnerabilities

Vulnerability details: VCID-72f1-dezh-c3at

Weaknesses (3)

CWE-1035	OWASP Top Ten 2017 Category A9 - Using Components with Known Vulnerabilities
CWE-79	Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')
CWE-937	OWASP Top Ten 2013 Category A9 - Using Components with Known Vulnerabilities

System	Score	Found at
epss	0.00073	https://api.first.org/data/v1/epss?cve=CVE-2018-11588
epss	0.00073	https://api.first.org/data/v1/epss?cve=CVE-2018-11588
epss	0.00073	https://api.first.org/data/v1/epss?cve=CVE-2018-11588
epss	0.00073	https://api.first.org/data/v1/epss?cve=CVE-2018-11588

Reference id	Reference type	URL
		https://api.first.org/data/v1/epss?cve=CVE-2018-11588
CVE-2018-11588		https://nvd.nist.gov/vuln/detail/CVE-2018-11588

No exploits are available.

There are no known vectors.

Exploit Prediction Scoring System (EPSS)

Date	Actor	Action	Source	VulnerableCode Version
2026-06-12T01:41:46.389326+00:00	EPSS Importer	Import	https://epss.cyentia.com/epss_scores-current.csv.gz	38.6.0