{"id":"CVE-2019-1020007","details":"Dependency-Track before 3.5.1 allows XSS.","aliases":["GHSA-jp9v-w6vw-9m5v"],"modified":"2026-07-09T00:37:01.683749Z","published":"2019-07-29T15:15:12.093Z","references":[{"type":"ADVISORY","url":"https://github.com/DependencyTrack/dependency-track/security/advisories/GHSA-jp9v-w6vw-9m5v"}],"affected":[{"ranges":[{"type":"GIT","repo":"https://github.com/dependencytrack/dependency-track","events":[{"introduced":"0"},{"fixed":"7e9d7b97645b0ddc9cde573382a2b88b67f4f978"}],"database_specific":{"extracted_events":[{"introduced":"0"},{"fixed":"3.5.1"}],"source":"CPE_RANGE","cpe":"cpe:2.3:a:owasp:dependency-track:*:*:*:*:*:*:*:*"}}],"versions":["3.5.0","3.4.1","3.4.0","3.3.1","3.3.0","3.2.2","3.2.1","3.2.0","3.1.1","3.1.0","3.0.4","3.0.3","3.0.1","3.0.0"],"database_specific":{"source":"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2019-1020007.json"}}],"schema_version":"1.7.5","severity":[{"type":"CVSS_V3","score":"CVSS:3.0/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N"}]}