CVE-2019-15750

Publish date

03 October 2019

Identifier

CVE-2019-15750

Manufacturer

SITOS

Product

SITOS Six Build v6.2.1

Authors

Dennis Herrmann and Andre Waldhoff

Description

Cross-Site Scripting (XSS) vulnerability in the "blog" function in SITOS Six Build v6.2.1 allows remote attackers to inject arbitrary web script or HTML via the "id" parameter.