Medium severity5.4NVD Advisory· Published Jul 9, 2019· Updated Jun 17, 2026
CVE-2019-13070
CVE-2019-13070
Description
A stored XSS vulnerability in the Agent/Center component of CyberPower PowerPanel Business Edition 3.4.0 allows a privileged attacker to embed malicious JavaScript in the SNMP trap receivers form. Upon visiting the /agent/action_recipient Event Action/Recipient page, the embedded code will be executed in the browser of the victim.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- CyberPower/PowerPanel Business Editiondescription
- Range: = 3.4.0
Patches
Vulnerability mechanics
References
2- www.exploit-db.com/exploits/47059nvdExploitThird Party AdvisoryVDB Entry
- www.cyberpowersystems.com/category/advisory-notices/nvdVendor Advisory
News mentions
0No linked articles in our index yet.