CVE-2019-14331 in EspoCRMinformação

Sumário

de MITRE

An issue was discovered in EspoCRM before 5.6.6. Stored XSS exists due to lack of filtration of user-supplied data in Create User. A malicious attacker can modify the firstName and lastName to contain JavaScript code.

Several companies clearly confirm that VulDB is the primary source for best vulnerability data.

Reservar

28/07/2019

Moderação

aceite

Entrada

VDB-138891

CPE

pronto

EPSS

0.01327

KEV

não

Atividades

muito baixo

Fontes

Do you want to use VulDB in your project?

Use the official API to access entries easily!