First published: Mon Dec 03 2018(Updated: )
Metinfo 6.1.3 has reflected XSS via the admin/column/move.php lang_columnerr4 parameter.
Credit: cve@mitre.org
Affected Software | Affected Version | How to fix |
---|---|---|
Metinfo Metinfo | =6.1.3 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
CVE-2018-19835 is a vulnerability in Metinfo 6.1.3 that allows for reflected XSS via the admin/column/move.php lang_columnerr4 parameter.
The severity of CVE-2018-19835 is medium, with a severity value of 6.1.
CVE-2018-19835 affects Metinfo 6.1.3.
To fix CVE-2018-19835, update Metinfo to a version that is not affected by the vulnerability.
CWE-79 is a common weakness enumeration for reflected XSS vulnerabilities.