CVE-2019-16960

SolarWinds Web Help Desk 12.7.0 allows XSS via a CSV template file with a crafted Location Name field.
Configurations

Configuration 1 (hide)

cpe:2.3:a:solarwinds:web_help_desk:12.7.0:*:*:*:*:*:*:*

History

No history.

Information

Published : 2021-01-04 08:15

Updated : 2024-02-28 18:08


NVD link : CVE-2019-16960

Mitre link : CVE-2019-16960

CVE.ORG link : CVE-2019-16960


JSON object : View

Products Affected

solarwinds

  • web_help_desk
CWE
CWE-79

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')