Design/Logic Flaw

2020-04-1514:15:00

PRIOn knowledge base

www.prio-n.com

0.002 Low

EPSS

Percentile

58.3%

JSON

Matrix42 Workspace Management 9.1.2.2765 and below allows stored XSS via unfiltered description parameters, as demonstrated by the comment field of a special order for individual software.

CPENameOperatorVersion
workspace_managementle9.1.2.2765

CPE	Name	Operator	Version
	workspace_management	le	9.1.2.2765

References

packetstormsecurity.com/files/157232/Matrix42-Workspace-Management-9.1.2.2765-Cross-Site-Scripting.html

seclists.org/fulldisclosure/2020/Apr/8

0.002 Low

EPSS

Percentile

58.3%

JSON

Related for PRION:CVE-2019-19500