Lucene search
PRIOn knowledge basePRION:CVE-2019-12741HistoryJun 05, 2019 - 3:29 p.m.
Cross site scripting
2019-06-0515:29:00
PRIOn knowledge base
www.prio-n.com
4
XSS exists in the HAPI FHIR testpage overlay module of the HAPI FHIR library before 3.8.0. The attack involves unsanitized HTTP parameters being output in a form page, allowing attackers to leak cookies and other sensitive information from ca/uhn/fhir/to/BaseController.java via a specially crafted URL. (This module is not generally used in production systems so the attack surface is expected to be low, but affected systems are recommended to upgrade immediately.)
Related
osv
osv
Cross-site Scripting in HAPI FHIR
2019-06-07 20:56:59
CVE-2019-12741
2019-06-05 15:29:01
alpinelinux
alpinelinux
CVE-2019-12741
2019-06-05 15:29:01
nvd
nvd
CVE-2019-12741
2019-06-05 15:29:01
gitlab
gitlab
Cross-site Scripting
2019-06-05 00:00:00
veracode
veracode
Cross-site Scripting (XSS)
2019-06-06 08:24:30
github
github
Cross-site Scripting in HAPI FHIR
2019-06-07 20:56:59
cvelist
cvelist
CVE-2019-12741
2019-06-05 14:58:44
cve
cve
CVE-2019-12741
2019-06-05 15:29:01