First published: Wed Jan 15 2020(Updated: )
An issue was discovered in Serpico (aka SimplE RePort wrIting and CollaboratiOn tool) 1.3.0. admin/list_user allows stored XSS via the auth_type parameter.
Credit: cve@mitre.org
Affected Software | Affected Version | How to fix |
---|---|---|
Serpico Project Serpico | =1.3.0 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.