Persistent Cross-Site Scripting (XSS) Vulnerability in Automic Web Interface (AWI)

Persistent Cross-Site Scripting (XSS) Vulnerability in Automic Web Interface (AWI)

CVE-2019-6504 · MEDIUM Severity

AV:N/AC:M/AU:N/C:N/I:P/A:N

Insufficient output sanitization in the Automic Web Interface (AWI), in CA Automic Workload Automation 12.0 to 12.2, allow attackers to potentially conduct persistent cross site scripting (XSS) attacks via a crafted object.

Learn more about our Web App Pen Testing.