{"resultsPerPage":1,"startIndex":0,"totalResults":1,"format":"NVD_CVE","version":"2.0","timestamp":"2026-06-21T16:12:59.857","vulnerabilities":[{"cve":{"id":"CVE-2019-20060","sourceIdentifier":"cve@mitre.org","published":"2020-02-10T13:15:11.787","lastModified":"2026-06-17T02:29:55.250","vulnStatus":"Modified","cveTags":[],"descriptions":[{"lang":"en","value":"MFScripts YetiShare v3.5.2 through v4.5.4 places sensitive information in the Referer header. If this leaks, then third parties may discover password-reset hashes, file-delete links, or other sensitive information."},{"lang":"es","value":"MFScripts YetiShare versiones v3.5.2 hasta v4.5.4, coloca información confidencial en el encabezado Referer. Si esto se filtra, entonces terceros pueden detectar hashes de restablecimiento de contraseña, enlaces de eliminación de archivos u otra información confidencial."}],"affected":[{"source":"cve@mitre.org","affectedData":[{"vendor":"n/a","product":"n/a","versions":[{"version":"n/a","status":"affected"}]}]}],"metrics":{"cvssMetricV31":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N","baseScore":7.5,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"NONE","availabilityImpact":"NONE"},"exploitabilityScore":3.9,"impactScore":3.6}],"cvssMetricV2":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"2.0","vectorString":"AV:N/AC:L/Au:N/C:P/I:N/A:N","baseScore":5.0,"accessVector":"NETWORK","accessComplexity":"LOW","authentication":"NONE","confidentialityImpact":"PARTIAL","integrityImpact":"NONE","availabilityImpact":"NONE"},"baseSeverity":"MEDIUM","exploitabilityScore":10.0,"impactScore":2.9,"acInsufInfo":false,"obtainAllPrivilege":false,"obtainUserPrivilege":false,"obtainOtherPrivilege":false,"userInteractionRequired":false}]},"weaknesses":[{"source":"nvd@nist.gov","type":"Primary","description":[{"lang":"en","value":"CWE-922"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:mfscripts:yetishare:*:*:*:*:*:*:*:*","versionStartIncluding":"3.5.2","versionEndIncluding":"4.5.4","matchCriteriaId":"24B6FE06-6620-48FC-9AD3-6E9FA7D2793F"}]}]}],"references":[{"url":"https://medium.com/%40jra8908/yetishare-3-5-2-4-5-4-multiple-vulnerabilities-927d17b71ad","source":"cve@mitre.org"},{"url":"https://mfscripts.com/","source":"cve@mitre.org","tags":["Product"]},{"url":"https://yetishare.com/","source":"cve@mitre.org","tags":["Product"]},{"url":"https://medium.com/%40jra8908/yetishare-3-5-2-4-5-4-multiple-vulnerabilities-927d17b71ad","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://mfscripts.com/","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Product"]},{"url":"https://yetishare.com/","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Product"]}]}}]}