CVE-2019-11198
Sitecore CMS 9.0.1 and earlier is affected by multiple XSS vulnerabilities. The CVE describes cross-site scripting via nine UI components (List Manager Dashboard, Campaign Creator, Attributes field, Icon Selection, Latitude/Longitude fields, UploadPackage2.aspx, Context menu, Insert from Template...