Unrated severityNVD Advisory· Published Jan 20, 2020· Updated Aug 5, 2024
CVE-2019-20381
CVE-2019-20381
Description
TestLink before 1.9.20 allows XSS via non-lowercase javascript: in the index.php reqURI parameter. NOTE: this issue exists because of an incomplete fix for CVE-2019-19491.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- TestLink/TestLinkdescription
Patches
Vulnerability mechanics
References
3- mantis.testlink.org/view.phpmitrex_refsource_MISC
- github.com/TestLinkOpenSourceTRMS/testlink-code/commit/cde692895e425731e6951d265a01ca6425a7c26emitrex_refsource_MISC
- github.com/TestLinkOpenSourceTRMS/testlink-code/compare/1.9.19...1.9.20mitrex_refsource_MISC
News mentions
0No linked articles in our index yet.