CVE-2018-1000139

I, Librarian version 4.8 and earlier contains a Cross Site Scripting (XSS) vulnerability in "id" parameter in stable.php that can result in an attacker using the XSS to send a malicious script to an unsuspecting user.
Advertisement

NeevaHost hosting service

Configurations

Configuration 1 (hide)

cpe:2.3:a:i-librarian:i_librarian:*:*:*:*:*:*:*:*

Information

Published : 2018-03-23 14:29

Updated : 2018-04-13 06:14


NVD link : CVE-2018-1000139

Mitre link : CVE-2018-1000139


JSON object : View

CWE
CWE-79

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

Advertisement

dedicated server usa

Products Affected

i-librarian

  • i_librarian