cve/CVE-2019-12834.md at e67cd2fdb0a3b693c8a19c46acadbde4fe3ee9dd

admin/cve

Fork 0

mirror of https://github.com/0xMarcio/cve.git synced 2025-12-16 20:27:21 +00:00

0xMarcio 48a00929ac Removed duplicates

2024-06-18 02:51:15 +02:00

714 B

Raw Blame History

CVE-2019-12834

Description

In HT2 Labs Learning Locker 3.15.1, it's possible to inject malicious HTML and JavaScript code into the DOM of the website via the PATH_INFO to the dashboards/ URI.

POC

Reference

https://github.com/miruser/Roche-CVEs/blob/master/CVE-2019-12834.md

Github

https://github.com/kiseru-io/clair-sec-scanner
https://github.com/rochesecurity/Roche-CVEs

714 B Raw Blame History

CVE-2019-12834

Description

POC

Reference

Github

714 B

Raw Blame History