There is Stored XSS in Verodin Director 3.5.3.0 and earlier via input fields of certain tooltips, and on the Tags, Sequences, and Actors pages.
References
Link | Resource |
---|---|
http://www.nolanbkennedy.com/post/cve-2019-10715-stored-xss-verodin-director | Third Party Advisory |
https://www.verodin.com/technology/platform | Product |
http://www.nolanbkennedy.com/post/cve-2019-10715-stored-xss-verodin-director | Third Party Advisory |
https://www.verodin.com/technology/platform | Product |
Configurations
History
21 Nov 2024, 04:19
Type | Values Removed | Values Added |
---|---|---|
References | () http://www.nolanbkennedy.com/post/cve-2019-10715-stored-xss-verodin-director - Third Party Advisory | |
References | () https://www.verodin.com/technology/platform - Product |
Information
Published : 2019-10-21 00:15
Updated : 2024-11-21 04:19
NVD link : CVE-2019-10715
Mitre link : CVE-2019-10715
CVE.ORG link : CVE-2019-10715
JSON object : View
Products Affected
verodin
- director
CWE
CWE-79
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')