Search for vulnerabilities
| Vulnerability ID | VCID-c8nh-v8nj-c3gq |
| Aliases |
CVE-2019-10062
GHSA-m6j2-v3gq-45r5 |
| Summary | Cross-site Scripting in aurelia-framework |
| Status | Published |
| Exploitability | 0.5 |
| Weighted Severity | 6.2 |
| Risk | 3.1 |
| Affected and Fixed Packages | Package Details |
| System | Score | Found at |
|---|---|---|
| epss | 0.00739 | https://api.first.org/data/v1/epss?cve=CVE-2019-10062 |
| epss | 0.00739 | https://api.first.org/data/v1/epss?cve=CVE-2019-10062 |
| epss | 0.00739 | https://api.first.org/data/v1/epss?cve=CVE-2019-10062 |
| epss | 0.00739 | https://api.first.org/data/v1/epss?cve=CVE-2019-10062 |
| generic_textual | MODERATE | https://discourse.aurelia.io/t/xss-vulnerability-in-htmlsanitizer-might-be-insufficiently-handled/4219 |
| cvssv3.1_qr | MODERATE | https://github.com/advisories/GHSA-m6j2-v3gq-45r5 |
| generic_textual | MODERATE | https://github.com/aurelia/framework |
| generic_textual | MODERATE | https://github.com/aurelia/framework/issues/992 |
| generic_textual | MODERATE | https://github.com/aurelia/templating-resources/blob/0cef07a8cac8e99146d8e1c4b734491bb3dc4724/src/html-sanitizer.js |
| generic_textual | MODERATE | https://nvd.nist.gov/vuln/detail/CVE-2019-10062 |
| generic_textual | MODERATE | https://www.gosecure.net/blog/2021/05/12/aurelia-framework-insecure-default-allows-xss |
| Percentile | 0.73328 |
| EPSS Score | 0.00739 |
| Published At | June 11, 2026, 12:55 p.m. |
| Date | Actor | Action | Source | VulnerableCode Version |
|---|---|---|---|---|
| 2026-06-11T20:28:12.724312+00:00 | GHSA Importer | Import | https://github.com/advisories/GHSA-m6j2-v3gq-45r5 | 38.6.0 |