John Jason Fallows

NVD

New vulnerability on the NVD: CVE-2019-20389

An XSS issue was identified on the Subrion CMS 4.2.1 /panel/configuration/general settings page. A remote attacker can inject arbitrary JavaScript code in the v[language_switch] parameter (within multipart/form-data), which is reflected back within a user’s browser without proper output encoding.

Published at: May 15, 2020 at 02:15PM
View on website

<img alt='' src='http://2.gravatar.com/avatar/e0a0f2ada86620fd4ae396b9dfbf50ef?s=150&d=mm&r=g' srcset='http://2.gravatar.com/avatar/e0a0f2ada86620fd4ae396b9dfbf50ef?s=300&d=mm&r=g 2x' class='avatar avatar-150 photo' height='150' width='150' />

John Jason Fallows

See author's posts

Related

Tags: government hack NVD security

NVD

1 min read

New vulnerability on the NVD: CVE-2020-19107

3 years ago John Jason Fallows

NVD

1 min read

New vulnerability on the NVD: CVE-2020-19108

3 years ago John Jason Fallows

NVD

1 min read

New vulnerability on the NVD: CVE-2020-19109

3 years ago John Jason Fallows

tv

1 min read

85 inch tv

10 months ago John Jason Fallows

tv

1 min read

85 inch tv

10 months ago John Jason Fallows

tv

1 min read

85 inch tv

10 months ago John Jason Fallows

GOOG

1 min read

Alphabet Inc – Class C (GOOG) price at close, 2023-07-21, is 120.31.

10 months ago John Jason Fallows

%d bloggers like this: