Lucene search

K
prionPRIOn knowledge basePRION:CVE-2019-13127
HistoryJul 01, 2019 - 3:15 p.m.

Input validation

2019-07-0115:15:00
PRIOn knowledge base
www.prio-n.com
1

6.2 Medium

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

32.0%

An issue was discovered in mxGraph through 4.0.0, related to the β€œdraw.io Diagrams” plugin before 8.3.14 for Confluence and other products. Improper input validation/sanitization of a color field leads to XSS. This is associated with javascript/examples/grapheditor/www/js/Dialogs.js.

CPENameOperatorVersion
draw.io_diagramslt8.3.14
mxgraphle4.0.0

6.2 Medium

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

32.0%