LavaLite through 5.7 has XSS via a crafted account name that is mishandled on the Manage Clients screen.
Metrics
Affected Vendors & Products
References
Link | Providers |
---|---|
https://github.com/LavaLite/cms/issues/304 |
History
No history.
MITRE
Status: PUBLISHED
Assigner: mitre
Published: 2019-10-10T11:40:40
Updated: 2024-08-05T01:40:15.818Z
Reserved: 2019-10-10T00:00:00
Link: CVE-2019-17434
Vulnrichment
No data.
NVD
Status : Analyzed
Published: 2019-10-10T12:15:09.813
Modified: 2019-10-10T19:22:24.097
Link: CVE-2019-17434
Redhat
No data.