Security Advisory

CVE-2019-8349

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2019-05-08 13:24:32

Last updated 2024-08-04 21:17:30

Assigner mitre

State PUBLISHED

Description

Multiple cross-site scripting (XSS) vulnerabilities in HTMLy 2.7.4 allow remote attackers to inject arbitrary web script or HTML via the (1) destination parameter to delete feature; the (2) destination parameter to edit feature; (3) content parameter in the profile feature.

← Browse all CVEs View on cve.org ↗