CVE-2019-12932
SeedDMS 5.1.11 is affected by a stored XSS weakness originating from insufficient escaping of the autocomplete search results in the header’s out/out.Viewfolder.php. The vulnerability allows injection of malicious scripts via the search autocomplete field, with the issue surface described consist...