CVE-2019-11427: XSS
First published: Sun Apr 21 2019(Updated: )
An XSS issue was discovered in app/search/search.app.php in idreamsoft iCMS 7.0.14 via the public/api.php?app=search q parameter.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| iCMS | =7.0.14 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the vulnerability ID of this XSS issue?
The vulnerability ID of this XSS issue is CVE-2019-11427.
What software version is affected by this vulnerability?
The software version affected by this vulnerability is idreamsoft iCMS 7.0.14.
What is the severity of CVE-2019-11427?
The severity of CVE-2019-11427 is medium, with a severity value of 6.1.
How can I fix this XSS issue?
To fix this XSS issue, update idreamsoft iCMS to a version that is not affected by this vulnerability.
Where can I find more information about CVE-2019-11427?
You can find more information about CVE-2019-11427 at the following reference: [CVE-2019-11427](https://github.com/idreamsoft/iCMS/issues/64).
- agent/type
- collector/mitre-cve
- source/MITRE
- agent/severity
- agent/references
- agent/weakness
- agent/last-modified-date
- agent/author
- agent/softwarecombine
- agent/first-publish-date
- agent/event
- agent/description
- agent/source
- agent/tags
- collector/nvd-index
- agent/software-canonical-lookup-request
- vendor/idreamsoft
- canonical/icms
- version/icms/7.0.14