CVE-2018-19599

EPSS 0.35% · P58 Updated Feb 21, 2026

Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2018-19599

Vulnerability Information

Have questions about the vulnerability? See if Shenlong's analysis helps!

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Description

Monstra CMS 1.6 allows XSS via an uploaded SVG document to the admin/index.php?id=filesmanager&path=uploads/ URI. NOTE: this is a discontinued product.

Source: NVD (National Vulnerability Database)

CVSS Information

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Type

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Title

Monstra CMS 跨站脚本漏洞

Source: CNNVD (China National Vulnerability Database)

Vulnerability Description

Monstra CMS是乌克兰Sergey Romanenko软件开发者的一套基于PHP的轻量级内容管理系统（CMS）。 Monstra CMS 1.6版本中存在跨站脚本漏洞。该漏洞源于WEB应用缺少对客户端数据的正确验证。攻击者可利用该漏洞执行客户端代码。

Source: CNNVD (China National Vulnerability Database)

CVSS Information

N/A

Source: CNNVD (China National Vulnerability Database)

Vulnerability Type

N/A

Source: CNNVD (China National Vulnerability Database)

Affected Products

Vendor	Product	Affected Versions	CPE	Subscribe
-	n/a	n/a	-

II. Public POCs for CVE-2018-19599

#	POC Description	Source Link	Shenlong Link

AI-Generated POCPremium

No public POC found.

III. Intelligence Information for CVE-2018-19599

Please Login to view more intelligence information

https://github.com/security-provensec/CVE-2018-19599/blob/master/monstra-dev_svg.pdfx_refsource_MISC
https://github.com/monstra-cms/monstra/issues/467x_refsource_MISC
https://anh.im/image/lG1x_refsource_MISC
https://nvd.nist.gov/vuln/detail/CVE-2018-19599

Same Patch Batch · n/a · 2020-03-02 · 35 CVEs total

CVE-2018-16356		PbootCMS SQL注入漏洞
CVE-2019-19607		Mitel Networks MiCollab AWV SQL注入漏洞
CVE-2019-19608		Mitel Networks MiCollab AWV SQL注入漏洞
CVE-2018-15819		EasyIO 30P 授权问题漏洞
CVE-2018-15820		EasyIO 30P 跨站脚本漏洞
CVE-2020-8776		Alfresco Enterprise和Alfresco Community 跨站脚本漏洞
CVE-2020-8777		Alfresco Enterprise和Alfresco Community 跨站脚本漏洞
CVE-2020-8778		Alfresco Enterprise和Alfresco Community 跨站脚本漏洞
CVE-2020-8437		BitTorrent uTorrent 代码问题漏洞
CVE-2019-19371		Mitel Networks MiCollab AWV 跨站脚本漏洞
CVE-2018-16357		PbootCMS SQL注入漏洞
CVE-2018-17572		InfluxData InfluxDB 跨站脚本漏洞
CVE-2018-19658		Evernote YXBJ 跨站脚本漏洞
CVE-2018-19798		Fleetco Fleet Maintenance Management 代码问题漏洞
CVE-2018-20343		Ken Silverman Build Engine 缓冲区错误漏洞
CVE-2018-5951		MikroTik RouterOS 安全漏洞
CVE-2020-10018		WebKit 输入验证错误漏洞
CVE-2019-20488		NETGEAR WNR1000V4 注入漏洞
CVE-2020-9548		FasterXML jackson-databind 代码问题漏洞
CVE-2020-9547		FasterXML jackson-databind 代码问题漏洞

Showing top 20 of 35 CVEs. View all on vendor page → →

IV. Related Vulnerabilities

Same product: n/a

Same vendor: n/a

V. Comments for CVE-2018-19599

No comments yet

Goal Reached Thanks to every supporter — we hit 100%!

CVE-2018-19599

I. Basic Information for CVE-2018-19599

Vulnerability Information

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Affected Products

II. Public POCs for CVE-2018-19599

III. Intelligence Information for CVE-2018-19599

Same Patch Batch · n/a · 2020-03-02 · 35 CVEs total

IV. Related Vulnerabilities

V. Comments for CVE-2018-19599

Leave a comment