An issue was discovered in Halvotec RaQuest 10.23.10801.0. Several features of the application allow stored Cross-site Scripting (XSS). Fixed in Release 24.2020.20608.0.
References
Link | Resource |
---|---|
https://excellium-services.com/cert-xlm-advisory/ | Third Party Advisory |
https://excellium-services.com/cert-xlm-advisory/cve-2019-19612/ | Product Third Party Advisory |
https://halvotec.de/produkte/raquest/ | Vendor Advisory |
Configurations
History
No history.
Information
Published : 2020-03-16 21:15
Updated : 2024-02-28 17:47
NVD link : CVE-2019-19612
Mitre link : CVE-2019-19612
CVE.ORG link : CVE-2019-19612
JSON object : View
Products Affected
halvotec
- raquest
CWE
CWE-79
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')