EUVD-2019-5019

Malware in sbrugna...

Ping Identity Agentless Integration Kit Cross-Site Scripting Vulnerability

Ping Identity Agentless Integration Kit is an agentless authentication development kit from Ping Identity. A cross-site scripting vulnerability exists in Ping Identity Agentless Integration Kit versions prior to 1.5. The vulnerability stems from the lack of proper validation of client-side data b...

CVE-2019-13564

XSS exists in Ping Identity Agentless Integration Kit before 1.5...

CVE-2019-13564

XSS exists in Ping Identity Agentless Integration Kit before 1.5...

Cross site scripting

XSS exists in Ping Identity Agentless Integration Kit before 1.5...

CVE-2019-13564

CVE-2019-13564 is a Cross-Site Scripting (XSS) vulnerability in the Ping Identity Agentless Integration Kit prior to version 1.5. Several sources describe it as a Reflected XSS affecting the /as/authorization.oauth2 endpoint, caused by improper encoding of an arbitrarily submitted HTTP GET parame...

CVE-2019-13564

XSS exists in Ping Identity Agentless Integration Kit before 1.5...

PT-2019-13425 · Ping Identity · Ping Identity Agentless Integration Kit

Name of the Vulnerable Software and Affected Versions: Ping Identity Agentless Integration Kit versions prior to 1.5 Description: The issue is related to a Reflected Cross-site Scripting XSS problem. There is no information provided about the estimated number of potentially affected devices...