Stored XSS Vulnerability in SeedDMS 5.1.11: Autocomplete Search Form Escaping Issue

Stored XSS Vulnerability in SeedDMS 5.1.11: Autocomplete Search Form Escaping Issue

CVE-2019-12932 · MEDIUM Severity

AV:N/AC:M/AU:N/C:N/I:P/A:N

A stored XSS vulnerability was found in SeedDMS 5.1.11 due to poorly escaping the search result in the autocomplete search form placed in the header of out/out.Viewfolder.php.

Learn more about our Api Penetration Testing.