Show filters
1 Total Results
Displaying 1-1 of 1
Sort by:
Attacker Value
Unknown

CVE-2019-19856

Disclosure Date: January 15, 2020 (last updated February 21, 2025)
An issue was discovered in Serpico (aka SimplE RePort wrIting and CollaboratiOn tool) 1.3.0. The User Type on the admin/list_user page allows stored XSS via the type parameter.
Attack Vector: NetworkPrivileges: HighUser Interaction: Required
0
0