Lucene search
MitreCVELIST:CVE-2018-19146HistoryJun 17, 2019 - 7:53 p.m.
CVE-2018-19146
2019-06-1719:53:48
mitre
www.cve.org
Concrete5 8.4.3 has XSS because config/concrete.php allows uploads (by administrators) of SVG files that may contain HTML data with a SCRIPT element.
Related
cve
cve
CVE-2018-19146
2019-06-17 20:15:09
openvas
openvas
Concrete5 <= 8.4.3 XSS Vulnerability
2019-06-19 00:00:00
prion
prion
Design/Logic Flaw
2019-06-17 20:15:00
veracode
veracode
Cross-site Scripting (XSS)
2019-06-18 10:33:01
nvd
nvd
CVE-2018-19146
2019-06-17 20:15:09
kitploit
kitploit
FUSE - A Penetration Testing Tool For Finding File Upload Bugs
2021-10-10 20:30:00