CVE-2019-12834
HT2 Labs Learning Locker 3.15.1 has a cross-site scripting (XSS) flaw allowing injection of HTML/JavaScript into the DOM via PATH_INFO to the dashboards/ URI. The vulnerability is documented across multiple CVE records in the connected set, with consistent description of DOM-based injection and l...