Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cvelistMitreCVELIST:CVE-2019-19733
HistoryDec 30, 2019 - 4:59 p.m.

CVE-2019-19733

2019-12-3016:59:40
mitre
www.cve.org
10

EPSS

0.001

Percentile

40.7%

JSON

_get_all_file_server_paths.ajax.php (aka get_all_file_server_paths.ajax.php) in MFScripts YetiShare 3.5.2 through 4.5.3 does not sanitize or encode the output from the fileIds parameter on the page, which would allow an attacker to input HTML or execute scripts on the site, aka XSS.

Related

cve 1
githubexploit 1
nvd 1
prion 1
cve
cve
CVE-2019-19733
2019-12-30 17:15:19
githubexploit
githubexploit
Exploit for Cross-site Scripting in Mfscripts Yetishare
2019-12-17 21:56:56
nvd
nvd
CVE-2019-19733
2019-12-30 17:15:19
prion
prion
Design/Logic Flaw
2019-12-30 17:15:00

EPSS

0.001

Percentile

40.7%

JSON
Related for CVELIST:CVE-2019-19733
cve1githubexploit1nvd1prion1