CVE

CVE-2019-16890

CVE-2019-16890

Halo 1.1.0 has XSS via a crafted authorUrl in JSON data to api/content/posts/comments.

Source: CVE-2019-16890

Exit mobile version