Security Advisory

CVE-2019-13488

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2019-07-10 21:18:38

Last updated 2024-08-04 23:57:39

Assigner mitre

State PUBLISHED

Description

A cross-site scripting (XSS) vulnerability in static/js/trape.js in Trape through 2019-05-08 allows remote attackers to inject arbitrary web script or HTML via the country, query, or refer parameter to the /register URI, because the jQuery prepend() method is used.

← Browse all CVEs View on cve.org ↗