VYPR
Unrated severityNVD Advisory· Published Mar 20, 2020· Updated Aug 4, 2024

CVE-2019-10221

CVE-2019-10221

Description

A Reflected Cross Site Scripting vulnerability was found in all pki-core 10.x.x versions, where the pki-ca module from the pki-core server. This flaw is caused by missing sanitization of the GET URL parameters. An attacker could abuse this flaw to trick an authenticated user into clicking a specially crafted link which can execute arbitrary code when viewed in a browser.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2
  • Pki Core Project/Pki Corellm-fuzzy2 versions
    10.x.x+ 1 more
    • (no CPE)range: 10.x.x
    • (no CPE)range: all pki-core 10.x.x versions

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.