CVE-2019-7551

Cantemo Portal before 3.2.13, 3.3.x before 3.3.8, and 3.4.x before 3.4.9 has XSS. Leveraging this vulnerability would enable performing actions as users, including administrative users. This could enable account creation and deletion as well as deletion of information contained within the app...

CVE-2019-7551

Cantemo Portal suffers XSS in versions prior to 3.2.13 (and 3.3.x prior to 3.3.8, 3.4.x prior to 3.4.9). The vulnerability allows an attacker to execute client-side code and perform actions as other users, including administrators (e.g., account creation/deletion, data deletion). The CNVD entry a...