CVE-2019-20519 (erpnext)
ERPNext 11.1.47 allows reflected XSS via the PATH_INFO to the user/ URI, as demonstrated by a crafted e-mail address.
Source: CVE-2019-20519 (erpnext)
[월:] 2020년 03월
CVE-2019-20517 (erpnext)
CVE-2019-20517 (erpnext)
ERPNext 11.1.47 allows reflected XSS via the PATH_INFO to the contact/ URI.
Source: CVE-2019-20517 (erpnext)
CVE-2019-20513
CVE-2019-20513
Open edX Ironwood.1 allows support/certificates?user= reflected XSS.
Source: CVE-2019-20513
CVE-2019-20514 (erpnext)
CVE-2019-20514 (erpnext)
ERPNext 11.1.47 allows reflected XSS via the PATH_INFO to the address/ URI.
Source: CVE-2019-20514 (erpnext)
CVE-2019-20515 (erpnext)
CVE-2019-20515 (erpnext)
ERPNext 11.1.47 allows reflected XSS via the PATH_INFO to the addresses/ URI.
Source: CVE-2019-20515 (erpnext)
CVE-2019-20516 (erpnext)
CVE-2019-20516 (erpnext)
ERPNext 11.1.47 allows reflected XSS via the PATH_INFO to the blog/ URI.
Source: CVE-2019-20516 (erpnext)
CVE-2019-20518 (erpnext)
CVE-2019-20518 (erpnext)
ERPNext 11.1.47 allows reflected XSS via the PATH_INFO to the project/ URI.
Source: CVE-2019-20518 (erpnext)
CVE-2019-20525
CVE-2019-20525
Ignite Realtime Openfire 4.4.1 allows XSS via the setup/setup-datasource-standard.jsp driver parameter.
Source: CVE-2019-20525
CVE-2019-20521 (erpnext)
CVE-2019-20521 (erpnext)
ERPNext 11.1.47 allows reflected XSS via the PATH_INFO to the api/ URI.
Source: CVE-2019-20521 (erpnext)
CVE-2019-20520 (erpnext)
CVE-2019-20520 (erpnext)
ERPNext 11.1.47 allows reflected XSS via the PATH_INFO to the api/method/ URI.
Source: CVE-2019-20520 (erpnext)