Vulnerability CVE-2018-19877

Vulnerability CVE-2018-19877

Published: 2018-12-05

Description:

	Topic	Author	Date
Low	Adiscon LogAnalyzer 4.1.6 Cross Site Scripting	Gustavo Sorondo	08.12.2018

Type:

(Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting'))

CVSS Base Score	Impact Subscore	Exploitability Subscore
4.3/10	2.9/10	8.6/10

Affected software
Adiscon -> Loganalyzer

https://loganalyzer.adiscon.com/news/loganalyzer-v4-1-7-v4-stable-released/

https://www.exploit-db.com/exploits/45958/