Description

Cross-site scripting (XSS) vulnerability in ProjectSend before r1070 allows remote attackers to inject arbitrary web script or HTML.

Remediation

References

CVE-2019-11533

Related Vulnerabilities

Apache HTTP Server Other Vulnerability (CVE-2006-4154)

WordPress Plugin Essential Addons for Elementor Multiple Cross-Site Scripting Vulnerabilities (4.5.3)

WordPress Plugin Theme Blvd Shortcodes Multiple Security Bypass Vulnerabilities (1.5.2)

Joomla Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2020-35613)

MediaWiki Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2017-0361)

Severity

Medium

Classification

CVE-2019-11533 CWE-707

Tags

Missing Update Known Vulnerabilities