Security Advisory

CVE-2019-0234

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2019-07-15 21:13:14

Last updated 2024-08-04 17:44:15

Assigner apache

State PUBLISHED

Description

A Reflected Cross-site Scripting (XSS) vulnerability exists in Apache Roller. Rollers Math Comment Authenticator did not property sanitize user input and could be exploited to perform Reflected Cross Site Scripting (XSS). The mitigation for this vulnerability is to upgrade to the latest version of Roller, which is now Roller 5.2.3.

← Browse all CVEs View on cve.org ↗