2 matches found
CVE-2019-15950
The CRM Plugin before 4.2.4 for Redmine allows XSS via crafted vCard data...
CVE-2019-15950
The CVE-2019-15950 vulnerability affects the Redmine CRM Plugin prior to version 4.2.4. The issue is an XSS vulnerability triggered by crafted vCard data uploaded to the plugin. According to the sources, affected software is the Redmine CRM Plugin for Redmine (before 4.2.4). Impact is XSS in the ...