Prima Systems FlexAir, Versions 2.3.38 and prior. Parameters sent to scripts are not properly sanitized before being returned to the user, which may allow an attacker to execute arbitrary code in a user’s browser session in context of an affected site.
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: mitre

Published: 2019-06-05T18:53:12

Updated: 2024-08-04T20:54:28.475Z

Reserved: 2019-02-09T00:00:00

Link: CVE-2019-7671

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2019-06-05T19:29:00.357

Modified: 2024-11-21T04:48:30.530

Link: CVE-2019-7671

cve-icon Redhat

No data.