Lucene search
K

6 matches found

NVD
NVD
added 2020/01/20 6:15 a.m.15 views

CVE-2019-20381

TestLink before 1.9.20 allows XSS via non-lowercase javascript: in the index.php reqURI parameter. NOTE: this issue exists because of an incomplete fix for CVE-2019-19491...

6.1CVSS6.2AI score0.0095EPSS
Exploits0References3
OSV
OSV
added 2020/01/20 6:15 a.m.12 views

CVE-2019-20381

TestLink before 1.9.20 allows XSS via non-lowercase javascript: in the index.php reqURI parameter. NOTE: this issue exists because of an incomplete fix for CVE-2019-19491...

6.1CVSS6AI score
Exploits0References3
Cvelist
Cvelist
added 2020/01/20 5:21 a.m.20 views

CVE-2019-20381

TestLink before 1.9.20 allows XSS via non-lowercase javascript: in the index.php reqURI parameter. NOTE: this issue exists because of an incomplete fix for CVE-2019-19491...

6.2AI score0.0095EPSS
Exploits0References3
Prion
Prion
added 2019/12/02 2:15 a.m.18 views

Cross site request forgery (csrf)

TestLink 1.9.19 has XSS via the lib/testcases/archiveData.php edit parameter, the index.php reqURI parameter, or the URI in a lib/testcases/tcEdit.php?doAction=doDeleteStep request...

4.3CVSS5.9AI score0.00791EPSS
Exploits1References1Affected Software1
Cvelist
Cvelist
added 2019/12/02 1:13 a.m.27 views

CVE-2019-19491

TestLink 1.9.19 has XSS via the lib/testcases/archiveData.php edit parameter, the index.php reqURI parameter, or the URI in a lib/testcases/tcEdit.php?doAction=doDeleteStep request...

6AI score0.00791EPSS
Exploits1References1
CNVD
CNVD
added 2019/12/02 12:0 a.m.3 views

TestLink Cross-Site Scripting Vulnerability

TestLink is a WEB-based test case management system. A cross-site scripting vulnerability exists in TestLink 1.9.19. The vulnerability can be exploited by an attacker via the lib/testcases/archiveData.php edit parameter, the index.php reqURI parameter, or the URI in the...

6.1CVSS6.3AI score0.00791EPSS
Exploits1References1
Rows per page
Query Builder