CVE-2019-15750

Cross-Site-Scripting - Non-Persistent

Publish date

03 October 2019

Identifier

CVE-2019-15750

Manufacturer

SITOS

Product

SITOS Six Build v6.2.1

Authors

Dennis Herrmann and Andre Waldhoff

Description

Cross-Site Scripting (XSS) vulnerability in the "blog" function in SITOS Six Build v6.2.1 allows remote attackers to inject arbitrary web script or HTML via the "id" parameter.

 

CREST
CREST STAR
CHECK IT Health Check Service
CBEST
Cyber Essentials
CESG Certified Service
First - Improving Security Together
BSI ISO 9001 FS 581360
BSI ISO 27001 IS 553326
PCI - Approved Scanning Vendor
NCSC CCSC - Assured Service Provider