[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"repo-stars":3,"vuln-CVE-2019-10221":6},{"stargazers_count":4,"fetched_at":5},7,"2026-06-05T02:55:30.529Z",{"id":7,"descriptions":8,"cisa":9,"weaknesses":10,"exploits":44,"aliases":45,"duplicate_of":9,"upstream":46,"downstream":47,"duplicates":60,"related":61,"reserved_at":9,"published_at":62,"modified_at":63,"state":64,"summary":65,"references_raw":74,"kevs":83,"epss":84,"epss_history":87,"metrics":347,"affected":362},"CVE-2019-10221","A Reflected Cross Site Scripting vulnerability was found in all pki-core 10.x.x versions, where the pki-ca module from the pki-core server. This flaw is caused by missing sanitization of the GET URL parameters. An attacker could abuse this flaw to trick an authenticated user into clicking a specially crafted link which can execute arbitrary code when viewed in a browser.",null,[11],{"_key":12,"id":12,"name":13,"description":14,"type":15,"status":16,"abstraction":17,"likelihood_of_exploit":18,"capec":19},"CWE-79","Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')","The product does not neutralize or incorrectly neutralizes user-controllable input before it is placed in output that is used as a web page that is served to other users.","weakness","Stable","Base","High",[20,24,28,32,36,40],{"id":21,"name":22,"techniques":23},"CAPEC-209","XSS Using MIME Type Mismatch",[],{"id":25,"name":26,"techniques":27},"CAPEC-588","DOM-Based XSS",[],{"id":29,"name":30,"techniques":31},"CAPEC-591","Reflected XSS",[],{"id":33,"name":34,"techniques":35},"CAPEC-592","Stored XSS",[],{"id":37,"name":38,"techniques":39},"CAPEC-63","Cross-Site Scripting (XSS)",[],{"id":41,"name":42,"techniques":43},"CAPEC-85","AJAX Footprinting",[],[],[],[],[48,50,52,54,56,58],{"_key":49},"RHSA-2021:0819",{"_key":51},"RHSA-2021:0975",{"_key":53},"UBUNTU-CVE-2019-10221",{"_key":55},"DEBIAN-CVE-2019-10221",{"_key":57},"RHSA-2020:4847",{"_key":59},"RHSA-2021:0851",[],[],"2020-03-20T13:55:48.000Z","2024-08-04T22:17:19.703Z","Modified",{"cisa_kev":66,"cisa_ransomware":66,"cisa_vendor":9,"epss_severity":67,"epss_score":68,"severity":69,"severity_score":70,"severity_version":71,"severity_source":72,"severity_vector":73,"severity_status":64},false,"low",0.00694,"medium",6.1,"v3.1","nvd","CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N",[75],{"url":76,"sources":77,"tags":79},"https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2019-10221",[78,72],"cve.org",[80,81,82],"X Refsource CONFIRM","Issue Tracking","Third Party Advisory",[],{"date":85,"score":68,"percentile":86},"2026-06-04",0.72279,[88,92,95,98,101,103,106,109,112,115,118,121,124,127,130,133,136,139,142,145,148,150,153,156,158,161,164,167,170,173,175,178,181,184,186,188,191,194,197,200,203,205,208,211,214,217,220,223,226,229,231,234,237,239,242,245,247,250,253,256,259,262,265,268,271,274,277,280,283,286,289,292,295,298,301,304,307,310,312,314,317,320,323,326,329,332,335,338,341,344],{"date":89,"score":90,"percentile":91},"2025-11-04",0.00669,0.70517,{"date":93,"score":90,"percentile":94},"2025-11-05",0.70503,{"date":96,"score":90,"percentile":97},"2025-11-06",0.705,{"date":99,"score":90,"percentile":100},"2025-11-07",0.70515,{"date":102,"score":90,"percentile":91},"2025-11-08",{"date":104,"score":90,"percentile":105},"2025-11-09",0.70509,{"date":107,"score":90,"percentile":108},"2025-11-10",0.70494,{"date":110,"score":90,"percentile":111},"2025-11-11",0.70502,{"date":113,"score":90,"percentile":114},"2025-11-12",0.70525,{"date":116,"score":90,"percentile":117},"2025-11-13",0.70532,{"date":119,"score":90,"percentile":120},"2025-11-14",0.70539,{"date":122,"score":90,"percentile":123},"2025-11-15",0.7054,{"date":125,"score":90,"percentile":126},"2025-11-16",0.70536,{"date":128,"score":90,"percentile":129},"2025-11-17",0.70531,{"date":131,"score":68,"percentile":132},"2025-11-18",0.69631,{"date":134,"score":68,"percentile":135},"2025-11-19",0.69639,{"date":137,"score":68,"percentile":138},"2025-11-20",0.69646,{"date":140,"score":90,"percentile":141},"2025-11-21",0.70551,{"date":143,"score":90,"percentile":144},"2025-11-22",0.70541,{"date":146,"score":90,"percentile":147},"2025-11-23",0.70522,{"date":149,"score":90,"percentile":100},"2025-11-24",{"date":151,"score":90,"percentile":152},"2025-11-25",0.70518,{"date":154,"score":90,"percentile":155},"2025-11-26",0.70523,{"date":157,"score":90,"percentile":147},"2025-11-27",{"date":159,"score":90,"percentile":160},"2025-11-28",0.70511,{"date":162,"score":90,"percentile":163},"2025-11-29",0.70499,{"date":165,"score":90,"percentile":166},"2025-11-30",0.70492,{"date":168,"score":90,"percentile":169},"2025-12-01",0.70635,{"date":171,"score":90,"percentile":172},"2025-12-02",0.70646,{"date":174,"score":90,"percentile":172},"2025-12-03",{"date":176,"score":90,"percentile":177},"2025-12-04",0.70498,{"date":179,"score":90,"percentile":180},"2025-12-05",0.7051,{"date":182,"score":90,"percentile":183},"2025-12-06",0.70513,{"date":185,"score":90,"percentile":183},"2025-12-07",{"date":187,"score":90,"percentile":152},"2025-12-08",{"date":189,"score":90,"percentile":190},"2025-12-09",0.70549,{"date":192,"score":90,"percentile":193},"2025-12-10",0.70584,{"date":195,"score":90,"percentile":196},"2025-12-11",0.70605,{"date":198,"score":90,"percentile":199},"2025-12-12",0.70631,{"date":201,"score":90,"percentile":202},"2025-12-13",0.70632,{"date":204,"score":90,"percentile":199},"2025-12-14",{"date":206,"score":90,"percentile":207},"2025-12-15",0.70626,{"date":209,"score":90,"percentile":210},"2025-12-16",0.70633,{"date":212,"score":90,"percentile":213},"2025-12-17",0.70649,{"date":215,"score":90,"percentile":216},"2025-12-18",0.70673,{"date":218,"score":90,"percentile":219},"2025-12-19",0.70688,{"date":221,"score":90,"percentile":222},"2025-12-20",0.70685,{"date":224,"score":90,"percentile":225},"2025-12-21",0.70678,{"date":227,"score":90,"percentile":228},"2025-12-22",0.70677,{"date":230,"score":90,"percentile":228},"2025-12-23",{"date":232,"score":90,"percentile":233},"2025-12-24",0.70686,{"date":235,"score":90,"percentile":236},"2025-12-25",0.7071,{"date":238,"score":90,"percentile":236},"2025-12-26",{"date":240,"score":90,"percentile":241},"2025-12-27",0.70749,{"date":243,"score":90,"percentile":244},"2025-12-28",0.70682,{"date":246,"score":90,"percentile":225},"2025-12-29",{"date":248,"score":90,"percentile":249},"2025-12-30",0.70692,{"date":251,"score":90,"percentile":252},"2025-12-31",0.70716,{"date":254,"score":90,"percentile":255},"2026-01-01",0.70872,{"date":257,"score":90,"percentile":258},"2026-01-02",0.70866,{"date":260,"score":90,"percentile":261},"2026-01-03",0.70865,{"date":263,"score":90,"percentile":264},"2026-01-04",0.70718,{"date":266,"score":90,"percentile":267},"2026-01-05",0.70712,{"date":269,"score":90,"percentile":270},"2026-01-06",0.70717,{"date":272,"score":90,"percentile":273},"2026-01-07",0.70733,{"date":275,"score":90,"percentile":276},"2026-01-08",0.70751,{"date":278,"score":90,"percentile":279},"2026-01-09",0.70758,{"date":281,"score":90,"percentile":282},"2026-01-10",0.70757,{"date":284,"score":90,"percentile":285},"2026-01-11",0.70752,{"date":287,"score":90,"percentile":288},"2026-01-12",0.70741,{"date":290,"score":90,"percentile":291},"2026-01-13",0.70739,{"date":293,"score":90,"percentile":294},"2026-01-14",0.70765,{"date":296,"score":90,"percentile":297},"2026-01-15",0.7077,{"date":299,"score":90,"percentile":300},"2026-01-16",0.70787,{"date":302,"score":90,"percentile":303},"2026-01-17",0.7078,{"date":305,"score":90,"percentile":306},"2026-01-18",0.70761,{"date":308,"score":90,"percentile":309},"2026-01-19",0.70753,{"date":311,"score":90,"percentile":306},"2026-01-20",{"date":313,"score":90,"percentile":294},"2026-01-21",{"date":315,"score":90,"percentile":316},"2026-01-22",0.70778,{"date":318,"score":90,"percentile":319},"2026-01-23",0.70811,{"date":321,"score":90,"percentile":322},"2026-01-24",0.70817,{"date":324,"score":90,"percentile":325},"2026-01-25",0.70791,{"date":327,"score":90,"percentile":328},"2026-01-26",0.70786,{"date":330,"score":90,"percentile":331},"2026-01-27",0.70788,{"date":333,"score":90,"percentile":334},"2026-01-28",0.70804,{"date":336,"score":90,"percentile":337},"2026-01-29",0.70802,{"date":339,"score":90,"percentile":340},"2026-01-30",0.7081,{"date":342,"score":90,"percentile":343},"2026-01-31",0.70815,{"date":345,"score":90,"percentile":346},"2026-02-01",0.70947,[348,355],{"source":78,"cvss_v2_0":9,"cvss_v3_0":9,"cvss_v3_1":349,"cvss_v4_0":9},{"baseScore":350,"baseSeverity":351,"vectorString":352,"impactScore":353,"exploitabilityScore":354},4.3,"MEDIUM","CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N",2.3,7.2,{"source":72,"cvss_v2_0":356,"cvss_v3_0":9,"cvss_v3_1":360,"cvss_v4_0":9},{"baseScore":350,"baseSeverity":9,"vectorString":357,"impactScore":358,"exploitabilityScore":359},"AV:N/AC:M/Au:N/C:N/I:P/A:N",2.9,8.6,{"baseScore":70,"baseSeverity":351,"vectorString":73,"impactScore":361,"exploitabilityScore":354},4.5,[363,374,384],{"ecosystem":9,"name":364,"vendor":364,"product":364,"cpe_part":365,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":366},"dogtagpki","a",[367],{"version":368,"is_range":369,"range_type":370,"version_start":371,"version_start_type":372,"version_end":373,"version_end_type":372,"fixed_in":9},"gte10.0_lte10.8.3",true,"cpe","10.0","including","10.8.3",{"ecosystem":9,"name":375,"vendor":376,"product":377,"cpe_part":378,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":379},"enterprise linux","redhat","enterprise_linux","o",[380,382],{"version":381,"is_range":66,"range_type":370,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"7.0",{"version":383,"is_range":66,"range_type":370,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"8.0",{"ecosystem":9,"name":385,"vendor":386,"product":385,"cpe_part":365,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":387},"pki-core","[unknown]",[388],{"version":389,"is_range":66,"range_type":78,"version_start":389,"version_start_type":372,"version_end":389,"version_end_type":372,"fixed_in":9},"all pki-core 10.x.x versions"]