Lucene search
MitreCVELIST:CVE-2019-17116HistoryOct 17, 2019 - 5:47 p.m.
CVE-2019-17116
2019-10-1717:47:50
mitre
www.cve.org
3
EPSS
0.012
Percentile
85.4%
A stored and reflected cross-site scripting (XSS) vulnerability in WiKID 2FA Enterprise Server through 4.2.0-b2047 allow remote attackers to inject arbitrary web script or HTML via /WiKIDAdmin/groups.jsp. The groupName parameter is vulnerable: the reflected cross-site scripting occurs immediately after the group is created. The malicious script is stored and will be executed again whenever /WiKIDAdmin/groups.jsp is visited.
Related
checkpoint_advisories
checkpoint_advisories
WiKID 2FA Enterprise Server Cross-Site Scripting (CVE-2019-17116)
2020-04-19 00:00:00
prion
prion
Cross site scripting
2019-10-17 18:15:00
nvd
nvd
CVE-2019-17116
2019-10-17 18:15:12
cve
cve
CVE-2019-17116
2019-10-17 18:15:12
packetstorm
packetstorm
WiKID Systems 2FA Enterprise Server 4.2.0-b2032 SQL Injection / XSS / CSRF
2019-10-18 00:00:00
zdt
zdt