CVE-2019-9537

: Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in uploaditem.asp of Telos Automated Message Handling System allows a remote attacker to inject arbitrary script into an AMHS session. This issue affects: Telos Automated Message Handling System...

CVE-2019-9537

CVE-2019-9537 concerns Telos Automated Message Handling System (AMHS). The vulnerability is an improper neutralization of input in uploaditem.asp, enabling a remote attacker to inject arbitrary script into an AMHS session (cross-site scripting). Affected versions are AMHS before 4.1.5.5. Several ...