CVE-2017-14973

2017-10-09T05:29:00
ID CVE-2017-14973
Type cve
Reporter cve@mitre.org
Modified 2017-10-27T18:45:00

Description

IDenticard Two-Reader Controller Configuration Manager 1.18.8 (396) is vulnerable to Stored Cross-Site Scripting (XSS) via the notes field in /~user_handler?file=logged_in.shtm (aka the edit user page).