Arbitrary Web Script Injection in I, Librarian 4.10 via display.php

Arbitrary Web Script Injection in I, Librarian 4.10 via display.php

CVE-2019-11359 · MEDIUM Severity

AV:N/AC:M/AU:N/C:N/I:P/A:N

Cross-site scripting (XSS) vulnerability in display.php in I, Librarian 4.10 allows remote attackers to inject arbitrary web script or HTML via the project parameter.

Learn more about our Web App Pen Testing.