WEB APPLICATION VULNERABILITIES Standard & Premium

Rukovoditel Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2019-7400)

Description

Rukovoditel before 2.4.1 allows XSS.

Remediation

References

Related Vulnerabilities

WordPress 5.2.x Multiple Vulnerabilities (5.2 - 5.2.18)

WordPress Plugin Contact Form 7 Security Bypass (3.7.1)

Grafana Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2020-13430)

WordPress Plugin Gallery-Photo Albums-Portfolio Multiple Cross-Site Scripting Vulnerabilities (1.2.29)

WordPress Plugin Wonder Video Embed Cross-Site Scripting (1.7)

Severity

Medium

Classification

CVE-2019-7400 CWE-707 CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N

Tags

Missing Update Known Vulnerabilities