Security Advisory

CVE-2019-13633

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2020-10-19 19:17:28

Last updated 2024-08-04 23:57:39

Assigner mitre

State PUBLISHED

Description

Blinger.io v.1.0.2519 is vulnerable to Blind/Persistent XSS. An attacker can send arbitrary JavaScript code via a built-in communication channel, such as Telegram, WhatsApp, Viber, Skype, Facebook, Vkontakte, or Odnoklassniki. This is mishandled within the administration panel for conversations/all, conversations/inbox, conversations/unassigned, and conversations/closed.

← Browse all CVEs View on cve.org ↗