CVE-2019-19496

CVE-2019-19496

EPSS 0.6%

Alfresco Enterprise before 5.2.5 allows stored XSS via an uploaded HTML document.

Affected products

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

https://github.com/vipinxsec/Alfresco_XSS/blob/master/README.md https://vipinxsec.blogspot.com/2019/11/alfresco-stored-xss-vulnerability-blind.html