CVE-2019-19496

CVE-2019-19496

EPSS 0.6%

Alfresco Enterprise before 5.2.5 allows stored XSS via an uploaded HTML document.

Produtos afetados

Quer saber se a sua infraestrutura está exposta a isto?

Falar com a TrueHacking →

Referências

https://github.com/vipinxsec/Alfresco_XSS/blob/master/README.md https://vipinxsec.blogspot.com/2019/11/alfresco-stored-xss-vulnerability-blind.html