CVE-2019-19370

CVE-2019-19370

A cross-site scripting (XSS) vulnerability in the web conferencing component of the Mitel MiCollab application before 9.0.15 for Android could allow an unauthenticated attacker to conduct a reflected cross-site scripting (XSS) attack due to insufficient validation in the file upload interface. A successful exploit could allow an attacker to execute arbitrary scripts.

Source: CVE-2019-19370

답글 남기기

이메일 주소는 공개되지 않습니다. 필수 필드는 *로 표시됩니다