{"id":"CVE-2018-17574","details":"An issue was discovered in YMFE YApi 1.3.23. There is stored XSS in the name field of a project.","aliases":["GHSA-5xgh-643p-cp2g"],"modified":"2026-03-14T09:28:29.418786Z","published":"2018-09-28T09:29:00.450Z","references":[{"type":"EVIDENCE","url":"https://github.com/YMFE/yapi/issues/520"}],"affected":[{"ranges":[{"type":"GIT","repo":"https://github.com/ymfe/yapi","events":[{"introduced":"0"},{"last_affected":"dae289b3b140d24f6d389fc151bf16e27b622f26"}],"database_specific":{"versions":[{"introduced":"0"},{"last_affected":"1.3.22"}]}}],"versions":["v1.1.0","v1.1.1","v1.1.2","v1.2.0","v1.2.3","v1.2.4","v1.2.5","v1.2.6","v1.2.7","v1.2.8","v1.2.9","v1.3.0","v1.3.1","v1.3.10","v1.3.11","v1.3.12","v1.3.13","v1.3.14","v1.3.15","v1.3.16","v1.3.17","v1.3.18","v1.3.19","v1.3.2","v1.3.20","v1.3.21","v1.3.22","v1.3.3","v1.3.4","v1.3.5","v1.3.6","v1.3.7","v1.3.8","v1.3.9"],"database_specific":{"source":"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2018-17574.json"}}],"schema_version":"1.7.5","severity":[{"type":"CVSS_V3","score":"CVSS:3.0/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N"}]}