Stored XSS Vulnerability in ZenTao 11.5.1 Allows Cookie Capture via Rich Text Box

Stored XSS Vulnerability in ZenTao 11.5.1 Allows Cookie Capture via Rich Text Box

CVE-2019-14731 · LOW Severity

AV:N/AC:M/AU:S/C:N/I:P/A:N

An issue was discovered in ZenTao 11.5.1. There is an XSS (stored) vulnerability that leads to the capture of other people's cookies via the Rich Text Box.

Learn more about our Web Application Penetration Testing UK.