Medium severity6.1NVD Advisory· Published Nov 18, 2019· Updated Jun 17, 2026
CVE-2019-12311
CVE-2019-12311
Description
Sandline Centraleyezer (On Premises) allows Unrestricted File Upload leading to Stored XSS. An HTML page running a script could be uploaded to the server. When a victim tries to download a CISO Report template, the script is loaded.
Affected products
2- Sandline/Centraleyezerdescription
Patches
Vulnerability mechanics
References
2- medium.com/insidersec0x42/centraleyezer-unrestricted-file-upload-cve-2019-12311-7cad12e95165nvdExploitThird Party Advisory
- seclists.org/fulldisclosure/2019/Nov/9nvdMailing ListThird Party Advisory
News mentions
0No linked articles in our index yet.