VYPR
Medium severity4.8NVD Advisory· Published Dec 19, 2018· Updated Jun 17, 2026

CVE-2018-19506

CVE-2018-19506

Description

Zurmo 3.2.4 has XSS via an admin's use of the name parameter in the reports section, aka the app/index.php/reports/default/details?id=1 URI.

Affected products

1

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.