3 matches found
CVE-2019-19198
The Scoutnet Kalender plugin 1.1.0 for WordPress allows XSS...
CVE-2019-19198
The Scoutnet Kalender plugin 1.1.0 for WordPress allows XSS...
CVE-2019-19198
The CVE-2019-19198 entry concerns the WordPress Scoutnet Kalender plugin, affected version 1.1.0 and earlier. The vulnerability is a Cross-Site Scripting (XSS) flaw caused by missing input sanitation in embedded calendar data (Info field) from Scoutnet, leading to stored XSS in pages displaying c...