CVE-2019-13966

2020-02-1421:02:47

mitre

www.cve.org

EPSS

0.003

Percentile

68.8%

JSON

In iTop through 2.6.0, an XSS payload can be delivered in certain fields (such as icon) of the XML file used to build the dashboard. This is similar to CVE-2015-6544 (which is only about the dashboard title).

References

0day.love/itop_vulnerabilities_disclosure.pdf

www.itophub.io/wiki/page?id=latest%3Arelease%3Achange_log

EPSS

0.003

Percentile

68.8%

JSON

Related for CVELIST:CVE-2019-13966