3 matches found
CVE-2019-20154
An issue was discovered in Determine formerly Selectica Contract Lifecycle Management CLM v5.4. A cross-site scripting XSS vulnerability in multiple getchart.jsp parameters allows remote attackers to inject arbitrary web script or HTML...
CVE-2019-20154
Determine Contract Lifecycle Management (CLM) v5.4 contains a Cross‑Site Scripting (XSS) vulnerability in multiple getchart.jsp parameters, enabling remote attackers to inject arbitrary web script or HTML. The affected component is CLM 5.4; root cause stems from inadequate input validation in get...
CVE-2019-20154
An issue was discovered in Determine formerly Selectica Contract Lifecycle Management CLM v5.4. A cross-site scripting XSS vulnerability in multiple getchart.jsp parameters allows remote attackers to inject arbitrary web script or HTML...