cve,link,title,description,vendor,products,score,severity,epss,cisa,cisa_published,article,ransomware,exploited,exploited_date,poc,trended,trended_no_1,trended_no_1_date,published,trended_score
CVE-2019-0186,https://securityvulnerability.io/vulnerability/CVE-2019-0186,,"The input fields of the Apache Pluto ""Chat Room"" demo portlet 3.0.0 and 3.0.1 are vulnerable to Cross-Site Scripting (XSS) attacks. Mitigation: * Uninstall the ChatRoomDemo war file - or - * migrate to version 3.1.0 of the chat-room-demo war file",Apache,Apache Pluto,6.1,MEDIUM,0.041519999504089355,false,,false,false,false,,,false,false,,2019-04-26T15:56:48.000Z,0
CVE-2018-1306,https://securityvulnerability.io/vulnerability/CVE-2018-1306,,"The PortletV3AnnotatedDemo Multipart Portlet war file code provided in Apache Pluto version 3.0.0 could allow a remote attacker to obtain sensitive information, caused by the failure to restrict path information provided during a file upload. An attacker could exploit this vulnerability to obtain configuration data and other sensitive information.",Apache,Apache Pluto,7.5,HIGH,0.9159200191497803,false,,false,false,true,2020-04-24T06:34:55.000Z,true,false,false,,2018-06-27T00:00:00.000Z,0