Medium severity6.1NVD Advisory· Published Dec 6, 2018· Updated Jun 17, 2026
CVE-2018-19924
CVE-2018-19924
Description
An issue was discovered in Sales & Company Management System (SCMS) through 2018-06-06. An email address can be modified in between the request for a validation code and the entry of the validation code, leading to storage of an XSS payload contained in the modified address.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
1Patches
Vulnerability mechanics
References
1- github.com/Venan24/SCMS/issues/2nvdExploitThird Party Advisory
News mentions
0No linked articles in our index yet.