{"resultsPerPage":1,"startIndex":0,"totalResults":1,"format":"NVD_CVE","version":"2.0","timestamp":"2026-06-02T05:22:01.826","vulnerabilities":[{"cve":{"id":"CVE-2018-18825","sourceIdentifier":"cve@mitre.org","published":"2018-10-30T06:29:00.390","lastModified":"2024-11-21T03:56:41.660","vulnStatus":"Modified","cveTags":[],"descriptions":[{"lang":"en","value":"Pagoda Linux panel V6.0 has XSS via the verification code associated with an invalid account login. A crafted code is mishandled during rendering of the login log."},{"lang":"es","value":"El panel de Pagoda Linux V6.0 tiene Cross-Site Scripting (XSS) mediante el código de verificación asociado con un inicio de sesión inválido. Se gestiona de manera incorrecta un código durante el renderizado del registro de inicios de sesión."}],"metrics":{"cvssMetricV30":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"3.0","vectorString":"CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N","baseScore":6.1,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"REQUIRED","scope":"CHANGED","confidentialityImpact":"LOW","integrityImpact":"LOW","availabilityImpact":"NONE"},"exploitabilityScore":2.8,"impactScore":2.7}],"cvssMetricV2":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"2.0","vectorString":"AV:N/AC:M/Au:N/C:N/I:P/A:N","baseScore":4.3,"accessVector":"NETWORK","accessComplexity":"MEDIUM","authentication":"NONE","confidentialityImpact":"NONE","integrityImpact":"PARTIAL","availabilityImpact":"NONE"},"baseSeverity":"MEDIUM","exploitabilityScore":8.6,"impactScore":2.9,"acInsufInfo":false,"obtainAllPrivilege":false,"obtainUserPrivilege":false,"obtainOtherPrivilege":false,"userInteractionRequired":true}]},"weaknesses":[{"source":"nvd@nist.gov","type":"Primary","description":[{"lang":"en","value":"CWE-79"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:pagoda_linux_project:pagoda_linux:6.0:*:*:*:*:*:*:*","matchCriteriaId":"DD7E6F45-6C64-47EB-8145-1CF4EE8673B2"}]}]}],"references":[{"url":"https://github.com/misterrou/rourou/blob/master/bt.docx","source":"cve@mitre.org","tags":["Third Party Advisory"]},{"url":"https://github.com/misterrou/rourou/blob/master/bt.docx","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]}]}}]}